internet.com
You are in the: Small Business Computing Channelarrow
Small Business Technology
» ECommerce-Guide | Small Business Computing | Webopedia | WinPlanet

ECommerce-Guide News provides online business owners with information about new ecommerce products, ecommerce laws and taxes, trends in ecommerce and market research on how to run an eBay business.   News, reviews and practical solutions for your online business  
Home News & Trends Solutions Resources eBiz FAQ Selling on eBay Forums Video Products Glossary About
News Research Trends


Search
ECommerce-Guide

Search internet.com

Become a Partner

ECommerce Glossary
Enter a Term:

Free Newsletters
ECommerce-Guide Daily
Small Business Computing
WinPlanet
Webopedia
E-mail Offers
Newsletter Address Changes

internet.commerce
Be a Commerce Partner

internet.com
IT
Developer
Internet News
Small Business
Personal Technology

Search internet.com
Advertise
Corporate Info
Newsletters
Tech Jobs
E-mail Offers

You are in: ECommerce-Guide > News > Trends

ECommerce-Guide Essentials
eBiz FAQ
Everything you need to know to start your own successful e-business.

Selling on eBay
How to make money in the online marketplace.

PayPal Payments and More
What's new in secure payments for your online store.

Shopping Cart Software
Solutions to close, process and track your online sales.

ecommerce-guide news and trends

Electronic Keys For A Digital Tomorrow
By Mark Merkow, CCP, CISSP
May 21, 1998

What Are Public-Private Key Pairs?

Cryptography can be performed under two basic approaches -- shared keys and secret keys. Shared (symmetric) keys are used to both encrypt and decrypt messages. The problem is that the key must be delivered to the recipient prior to the beginning of communications under a process that prevents key theft along the way. This is no small feat.

Cryptography using secret (asymmetric) keys use a pair of cryptography keys to encrypt and decrypt communications. These keys are mathematically related, but cannot be derived from each other. They operate such that messages encrypted using one key can only be decrypted with the other key, and vice-versa. These keys are generated at the same time (when a certificate is requested), and the private key NEVER leaves the machine upon which it was generated. The other half of the key pair is sent to the Certificate Authority to ''wrap up'' within a certificate. Certificates are meant to be shared with anyone the private key holder desires to assure his privacy in communications. Before a session begins, the sharing of public key certificates must occur.

How Does Message Signing Work?

Using cryptography, a sender desiring private communications with another can ''sign'' or create a digital signature for their message by computing a special value, called a message digest. The algorithms that perform this computation are such that the chances of two messages having the same value are on the order of 1 in 1 X 10 48 , making drowning while water skiing in the Sahara Desert far likelier. Once computed, the message digest is encrypted with the senderUs private key, and attached to the message itself. These signatures are similar to fingerprints for the message -- no two are ever alike.

Once the message is received, the receiver decrypts the message digest using the public key from the sender''s digital certificate and computes their own message digest using the same algorithm the sender used. Next, they compare the digest value they computed to the one just decrypted. If they match, the recipient is assured that the message must have came from who they believe it came from (otherwise the decryption step would fail), and they can be assured that the message was not altered en route (otherwise the message digest would be different). The algorithms that are used in message digest computations are such that a change of a single byte in the message will change roughly half the bits in the message digest.

Furthermore, if the message and the digest together are encrypted using the receiver''s public key (from their digital certificate), the sender can also be assured that only the receiver can read it. This process is known as creating a Digital Envelope for the message. Using digital envelopes, the Internet becomes a Virtual Private Network (VPN) that tunnels communications between two parties, keeping them secure from prying eyes.

Go to page: Prev  1  2  3  4  Next  

Tools:
Add ecommerce-guide.com to your favorites
Add ecommerce-guide.com to your browser search box
IE 7 | Firefox 2.0 | Firefox 1.5.x
Receive news via our XML/RSS feed



internet.commediabistro.comJusttechjobs.comGraphics.com

Search:

WebMediaBrands Corporate Info

Legal Notices, Licensing, Permissions, Privacy Policy.
Advertise | Newsletters | Shopping | E-mail Offers | Freelance Jobs

Solutions

Whitepapers and eBooks

Microsoft Articles: Visual Studio 2010
Adobe Article: Adobe Helps PHP Developers Create Rich Internet Applications
Microsoft Whitepaper: How Windows Server 2008 R2 Helps Optimize IT and Save You Money
Adobe Article: Java Developers Finding a Home at Adobe Flex
IBM Articles: A Smarter Business Needs Smarter Technology
Intel Xeon Processor Increases Server Efficiency and Capabilities
Intel Tech Brief: Automated Energy Efficiency for the Intelligent Enterprise
Oracle Whitepapers - Innovation for IT Leaders
Avaya Article: Communication-Enabled Mashups--Empowering Both Business Owners and IT
 Internet.com eBook: IT Manager's Guide to Social Networking
Internet.com eBook: Get Ready for Windows 7
Microsoft Article: Expression Web 3--New Features for PHP Developers
Whitepapers: Manage Your Business Infrastracture with IBM
Whitepaper: Maximize Your Storage Investment with HP
Internet.com eBook: Becoming a Better Project Manager
Microsoft Article: Stress Free and Efficient Designer/Developer Collaboration
MORE WHITEPAPERS, EBOOKS, AND ARTICLES

Webcasts

Webcast: Connecting PHP to Microsoft Technologies
Video: Microsoft Partner Program Benefits
Video: Windows Azure Debugging Tips
SAP BusinessObjects Webcast: Unlock the Power of Reporting with Crystal Reports
 IBM Webcast: Speed Business Innovation with Reduced Cost and Risk
Video: Deploy Applications on Windows Azure
MORE WEBCASTS, PODCASTS, AND VIDEOS

Downloads and eKits

Download: Microsoft Visual Studio 2010 Beta 2
Downloads & Free Trials: Microsoft's New Efficiency Resource Center
Get the Windows 7 SDK
 Free Trial: Red Gate SQL Backup Pro 6
Iron Speed Designer Application Generator
MORE DOWNLOADS, EKITS, AND FREE TRIALS

Tutorials and Demos

Internet.com Hot List: Get the Inside Scoop on the Hottest IT and Developer Products
All About Botnets
 MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES