Breaking up large data for RSA encryption_问答_开发者

Breaking up large data for RSA encryption

开发者 https://www.devze.com 2023-02-16 02:53 出处：网络

Recently we\'ve been diving into using OpenSSL to help encrypt/decrypt some data we have. Each \"client\" will have Public/Private key pair and X509 Certificate given to them by a local Certificate Au

Recently we've been diving into using OpenSSL to help encrypt/decrypt some data we have. Each "client" will have Public/Private key pair and X509 Certificate given to them by a local Certificate Authority. I'm now looking into encrypting/decrypting data with that key pair.

Everything I've looked into show using the methods RSA_publ开发者_运维问答ic_encrypt and RSA_private_decrypt for RSA encryption. But the amount of data I can encrypt at once is limited by RSA_size(rsa) - 41 for the padding type RSA_PKCS1_OAEP_PADDING. So my question is how to encrypt larger amounts of data while sticking to our RSA scheme (no static keyphrases, etc). I was thinking about breaking the data up into chunks and then encrypting it but that seems like it's defeating the point of padding.

Any help would be appreciated.

Even if you break the data, you will find out, that the speed is prohibitively slow. The right method is

Generate random key for symmetric algorithm
encrypt the data using symmetric algorithm and the random key
encrypt the random key using your public key and store it in the encrypted form next (or before) the data.

You should use a standard like CMS (the basis of the S/MIME support in your email client) or PGP. There are libraries for both of these standards for just about every platform.

You will find that they are very similar in their approach to bulk data encryption, using a symmetric cipher to encrypt data and encrypting that secret key with the public key of the "message" recipients. This approach is secure and fast.

However, these standards go further, securely handling things you might not have thought about yet, like encrypting the data for multiple recipients, attaching meta-data to the encrypted content, etc. You also get interoperability with other software. For example, if you use S/MIME, you can use just about any email client on any platform to decrypt. In fact, depending on your integration requirements, you might not need to write any software yourself.

Using one of these well-established protocols won't solve all of your security problems, but it will make it more difficult to do something really dumb.