Golgappa.net | Golgappa.org | BagIndia.net | BodyIndia.Com | CabIndia.net | CarsBikes.net | CarsBikes.org | CashIndia.net | ConsumerIndia.net | CookingIndia.net | DataIndia.net | DealIndia.net | EmailIndia.net | FirstTablet.com | FirstTourist.com | ForsaleIndia.net | IndiaBody.Com | IndiaCab.net | IndiaCash.net | IndiaModel.net | KidForum.net | OfficeIndia.net | PaysIndia.com | RestaurantIndia.net | RestaurantsIndia.net | SaleForum.net | SellForum.net | SoldIndia.com | StarIndia.net | TomatoCab.com | TomatoCabs.com | TownIndia.com
Interested to Buy Any Domain ? << Click Here >> for more details...

  1. Categories >> Software >> Cryptography >> Encryption Decryption
  2. Suggest New Category

What happens if a private key is compromised ?

Question Posted / ramkumar

Answer Posted / ramkumar

Private keys must be stored securely, since forgery and
loss of privacy could result from compromise (see Question
4.1.3.7). The measures taken to protect a private key must
be at least equal to the required security of the messages
encrypted with that key. In general, a private key should
never be stored anywhere in plaintext form. The simplest
storage mechanism is to encrypt a private key under a
password and store the result on a disk. However, passwords
are sometimes very easily guessed; when this scheme is
followed, a password should be chosen very carefully since
the security is tied directly to the password.
Storing the encrypted key on a disk that is not accessible
through a computer network, such as a floppy disk or a
local hard disk, will make some attacks more difficult. It
might be best to store the key in a computer that is not
accessible to other users or on removable media the user
can remove and take with her when she has finished using a
particular computer. Private keys may also be stored on
portable hardware, such as a smart card. Users with
extremely high security needs, such as certifying
authorities, should use tamper-resistant devices to protect
their private keys (see Question 4.1.3.13).

Is This Answer Correct ?    0 Yes 1 No



Post New Answer       View All Answers


Please Help Members By Posting Answers For Below Questions

What is a zed encoder? How does it work?

2632

Do digital signatures help detect altered documents and transmission errors?

964

What is the difference between Kryptel and Silver Key?

2007

How to change the location of the Kryptel (Silver Key) program group?

1925

What is luc?

795

Does encryption of connection strings in web.config file possible? How?

871

Actual role of cryptography is data security .Explain with real world example?

1746

How to remove the Kryptel (Silver Key) icon from the desktop?

1948

whats cryptanalysis?

2021

How to I prevent other users from using Kryptel (Silver Key)?

1855

What is meant by 1024, 2048, 5096 bit encryption?

3570

why hash functions are not used for encryption but authentication ?

1769

What are the counter and pcbc modes?

876

What are some other public key cryptosystems ?

1933

What is secret-key cryptography ?

3950