Home.... | log in.... | Pub my question! | Sign-up....
Java-index >> Security >> Cryptography

Best Strategy to store priv key on Windows

Hi,

I currently doing a program (front end) for a end user to be able to :

1) Generate a PGP keypair (RSA)

2) Encrypt documents to send, decrypt documents received

For the public key (that i need to broadcast), i think the best way is to use a PKS (based on a LDAP server) isn't it.

For the private key, i wonder what is the best strategy to store it when working at software level on Windows & *nix (if i enabled access to third party hardware, i think the best strategies are SmartCard or Biomectrics devices)

The PGP priv key that i generate (using BouncyCastle) is stored as a File (secret.asc for example, and protected by a passphrase) : but where could i store it on Windows : store the file in the C:\Docuemnts and Settings\<username> directory? in the Windows registry?...

Any help is welcome.

Laurent

[876 byte] By [Laurent_Boisa] at [2007-10-3 3:53:02]
«« run applets with appletviewer
»» Maintaining a partially changed window
# 1

Another startegy to be cross-platform (without using java.util.Preferences), was to have an embedded database with my application.

I would then store/retrieve the private key using SQL statements from my application : but of course, the data files of my Derby Database would be created on the filesystem (user.home System property)

Could it be a good strategy or should i use java.util.Preferences?

Thanks

Laurent

Laurent_Boisa at 2007-7-14 21:50:47 > top of Java-index,Security,Cryptography...
# 2
Is Cryptix OpenPGP a good alternative to BouncyCastle for this kind of stuffI saw in teh samples that it includes some facilities to create the KeyRings (for pub and secret key)Cryptix OpenPGP : http://www.cryptix.org/
Laurent_Boisa at 2007-7-14 21:50:47 > top of Java-index,Security,Cryptography...
Security
Cryptography

Security New Topic

Security Hot Topic

Security

All Classified