Clayton Haapala wrote:
>
> On Wed, Sep 12, 2001 at 08:12:39AM -0700, Michael Sierchio wrote:
> >
> > Clayton Haapala wrote:
> >
> > > Why not encrypt the Certificate key, prior to splitting it
> >
> > Encrypt the public key? Does not compute.
> >
> I wrote a bit more than THAT -- I said to use a separate public key
> to encrypt (protect) the Certificate key. Beats using a bloody XOR.
> Then, when they get together to merge their Certificate pieces, they
> put them together and decrypt using the separate private key.
And how do you store the seperate private key ?
Don't underestimate XOR.
With a good random source and a secure way to seperate
key and data it is one of the best crypt algorithms available.
By
Goetz
--
Goetz Babin-Ebell, TC TrustCenter AG, http://www.trustcenter.de
Sonninstr. 24-28, 20097 Hamburg, Germany
Tel.: +49-(0)40 80 80 26 -0, Fax: +49-(0)40 80 80 26 -126
S/MIME Cryptographic Signature
