Is a Public/Private Key Pair possible in SAP?

Similar Messages

• Public/private keys

  How to create a private/public keys?
  Fred

  Hi Fred,
  Following are the steps required are to create a Public/Private Keys:
  1. Load the security provider (if not configured in $JAVAHOME/jre/lib/security/java.security)
  2. Obtain a handle to a secure random number generator.
  3. Obtain a handle to KeyPairGenerator for a specific public key algorithm.
  4. Generate the public/private key pair
  5. Extract the public and private keys
  The following example shows how to generate public and private keys using the KeyPairGenerator and KeyPair interfaces using JCSI's security provider.
  import java.security.*;
  // Load JCSI's JCA security provider
  Security.addProvider(new com.dstc.security.provider.DSTC());
  // Seed random number generator using the default seeding
  // "SHA1PRNG" = SHA1 Pseudo-random number generator
  SecureRandom random = SecureRandom.getInstance("SHA1PRNG");
  // Initialise KeyPairGenerator to create 1024-bit RSA keys.
  // PK Algorithm = "RSA", Security Provider = "DSTC" (Wedgetail)
  KeyPairGenerator keyGen = KeyPairGenerator.getInstance("RSA", "DSTC");
  keyGen.initialize(1024, random);
  // Generate RSA pulic/private key pair
  KeyPair keyPair = keyGen.genKeyPair();
  // Extract public and private keys
  PrivateKey privKey = keyPair.getPrivate();
  PublicKey pubKey = keyPair.getPublic();
  Hope this will help you.
  Regards,
  Anil.
  Techncial Support Engineer.

• Generate public private keys inside smart card

  Dear all,
  I am using this code to generate public and private key inside the smart card.
  KeyPair kp = new KeyPair(KeyPair.ALG_RSA_CRT, KeyBuilder.LENGTH_RSA_512);
  kp.genKeyPair();
  PrivateKey prikey = kp.getPrivate();
  PublicKey pubkey = kp.getPublic();
  This code is executing without errors.
  I need to get out the public key from the smart card. So I need to get public key to a byte array.
  But I can't get those keys to plain text byte array.
  The methods that I can get for pubkey object are
  pubkey.clearKey();
  pubkey.equals(obj);
  pubkey.getSize();
  pubkey.getType();
  pubkey.isInitialized(); only these.
  I am using
  Eclipse Version: 3.4.1 (Compiler complience level = 1.4)
  Jcop plugin (to communicate with the actual card and to test the java code in virtual card provided by JCOP)
  OmniKey5321 card reader (In contactless type)
  What is the reason to get only those above methods to pubkey object? Is it a version problem?
  How can I get the public key to plain byte array? Is it possible?
  If it is not possible Is there a way to get public key as a export certificate or something other solution?
  If my scenario is not a possible strategy, How can I use public private keys to send specific data to applet? Is there a better way to do this?
  Edited by: 863766 on Jun 6, 2011 12:16 AM

  Thank you very much!
  I used this code
  RandomData rand = RandomData.getInstance(RandomData.ALG_SECURE_RANDOM);
            short lenBytes = (short) (KeyBuilder.LENGTH_DES/8);
            byte[] buffer = JCSystem.makeTransientByteArray(lenBytes,JCSystem.CLEAR_ON_DESELECT);
            DESKey key = (DESKey) KeyBuilder.buildKey(KeyBuilder.TYPE_DES , KeyBuilder.LENGTH_DES,false);
            rand.generateData(buffer, (short) 0 ,lenBytes);
            key.setKey(buffer, (short) 0 ) ;
            byte keyData[]= new byte[256];
            key.getKey(keyData, (short) 0);
  Now I know how to initialize the key...
  Thank you again.
  Regards,
  Dushantha
  Edited by: 863766 on Jun 6, 2011 3:52 AM

• Deleted the public/private keys installed by iPCU & untrusted the certs

  Hi;
  it's early in the morning and i couldn't quite figure what was going on
  when:
  - new public and private keys "appeared" in keychain
  - a certificate was installed almost as soon as a plugged
  an iphone in while running iPhone Config Util (iPCU i now
  realize)
  From the console:
  Tue Jun 30 02:39:45 unknown mcmobiletunnel[363] <Warning>: added object <NSCFType: 0x1073d0> to keychain as iPCUHost-D3FA2B23-E0D0-4C42-A48B-DFXXXXXXXX-HostCert success 1 error 0
  What it looks like is on connecting the iPhone "phoned home" and snagged a certificate and public and private keys to install on my MacBook Pro.
  I deleted these not realizing who iPCUHost was (an earlier cert was marked as untrusted on a pass trhough my certs earlier).
  OK: so *how* do i recreate the public/private keys? the Certificates in Keychain?
  Tried: downloading and re-installing iPCU
  Tried: Time Machine to earlier version if iPCU & using Software update to Update.
  This is where things look unhappy in the iPCU console:
  Tue Jun 30 03:42:36 unknown mcmobiletunnel[432] <Warning>: received request 4: (\n RequestType\n), keys {\n RequestType = GetProfileList;\n}
  Tue Jun 30 03:42:36 unknown mcmobiletunnel[432] <Warning>: processing request 4: ((\n RequestType\n))
  Tue Jun 30 03:42:36 unknown mcmobiletunnel[432] <Warning>: sending reply {\n OrderedIdentifiers = (\n );\n ProfileManifest = {\n };\n ProfileMetadata = {\n };\n Status = Acknowledged;\n}
  Tue Jun 30 03:42:36 unknown mcmobiletunnel[432] <Error>: receive_message: Could not receive size of message: 0 Operation not permitted
  Tue Jun 30 03:42:36 unknown mcmobiletunnel[432] <Warning>: received request 4: (null), keys (null)
  Tue Jun 30 03:42:36 unknown mcmobiletunnel[432] <Error>: main: Could not receive request from host.
  Tue Jun 30 03:48:21 unknown /usr/libexec/notification_proxy[426] <Error>: Could not receive size of message
  Tue Jun 30 03:48:21 unknown /usr/libexec/notification_proxy[426] <Error>: Could not receive message
  Tue Jun 30 03:51:02 unknown mcmobiletunnel[446] <Warning>: received request 4: (\n RequestType\n), keys {\n RequestType = GetProfileList;\n}
  Tue Jun 30 03:51:02 unknown mcmobiletunnel[446] <Warning>: processing request 4: ((\n RequestType\n))
  Tue Jun 30 03:51:02 unknown mcmobiletunnel[446] <Warning>: sending reply {\n OrderedIdentifiers = (\n );\n ProfileManifest = {\n };\n ProfileMetadata = {\n };\n Status = Acknowledged;\n}
  Tue Jun 30 03:51:02 unknown mcmobiletunnel[446] <Error>: receive_message: Could not receive size of message: 0 Operation not permitted
  Tue Jun 30 03:51:02 unknown mcmobiletunnel[446] <Warning>: received request 4: (null), keys (null)
  Tue Jun 30 03:51:02 unknown mcmobiletunnel[446] <Error>: main: Could not receive request from host.
  Thx
  Jim

  I'm in the same situation here. While trying out the iPCU, I noticed my test devices were showing up with a certificate of "iPCUHost...". I was hoping to replace this default cert with one from our own CA, and in the process of messing around I tried deleting all of those certs from my Keychain. They deleted just fine, and after a sync the cert also disappeared from the connected iPhone. Unfortunately, there is no obvious way to replace that cert and as of now, I cannot install any profile to the device that has had the cert removed. If I select the device and click "Install" on a profile, nothing happens... no errors, no console messages, it just does nothing.
  I'm not quite sure how to replace the missing cert, and in particular how to replace it with one of our own rather than the default. Surely we don't have to actually develop a web service just to install certs... (see page 21 of the Enterprise Deployment Guide)
  -mike

• Public/private key length 2048 in visual administrator

  Hello,
  I need to generate an RSA public/private keypair with visual administrator with a length of 2048. From the dropdownbox in the dialog, "Key and Certificate Generation", I can only select op to 1024.
  Who knows if this is at all possible and/or how to get it done?
  this is on a Netweaver 6.40, XI 3.0 system
  thanks very much
  Gr Wout

  Hello Wout
  I think this issue would be best placed in the Netweaver Administrator forum. You will have a better chance of getting a quality answer to your query on that forum. I will forward the thread.
  Regards
  Mark Smyth
  XI/PI Moderator

• Acrobat 9 Pro / Files with public+private key security

  Hi,
  I'm working at a Software Company. We want to create the Help Documents for our Software in PDF.
  We want to take care, that those PDF documents cannot be opened without our Software.
  My idea is to certificate the PDFs with a public key and the private key is hidden in our program.
  I tested a lot and read the manual, but it doesn't work.
  Thanx for some hints.
  Greetings,
  Sven
  Sorry for the lousy English, I'm from Germany.

  You might be able to write some JavaScript to solve the problem, but even in that case you need to be aware that the security of PDFs are not all that secure, particularly if one uses a 3rd party reader. Apparently several of them ignore the PDF security settings and open the PDF anyway. I do not know if that would occur if the PDF were encrypted in some way.
  So much for giving a spin on the topic. Good luck.

• How does a public/private key encrypt and decrypt each other?

  I understand the logic that when a communication takes place both parties pass their public keys to each other which is used to encrypt all messages. Once the party receives the messages the private key is used to decrypt them however I'm wondering how a private key is generated from a public key. If the private key is based on an algorithm wouldn't each party be able to generate what the other person's private key would be based on the public? Wouldn't a third party?

  How the public and private keys are generated depends on what public key cryptosystem is being used, but in general the private key cannot be derived from the public with a computationally feasable algorithm, while the public key can be derived from the private key very quickly. Two examples:
  RSA: private keys are 2 primes, p and q, and an encryption exponent d. Public key is the product p*q, and an encryption exponent e. How does the attacker get p and q, or d, from n and e? The best attack known against this (for properly chosen p, q, and d) is factoring. Factoring can be made infeasable by choosing the primes to be large enough.
  Diffie-Hellman: a prime modulus p and a base g < p is known by everyone (including the attacker). The private key is an integer x chosen randomly, 2 <= x < p-1 (there are better ways to choose x). The public key is g^x mod p. How does the attacker get x from g^x mod p? Again, the best known attack is one that is computationally roughly equal to factoring a composite number of about the size of p.

• Encrypt text without full blown public/private keys or certificates?

  hello,
  i would like to encrypt small texts (up to about 1000 characters) to save them in a file and later load them and decrypt the text. what solutions in Java are available without setting up a full blown key store with public and private keys and/or certificates. i think about a small method/class that en- and decrypts arbitrary text.
  any suggestions?
  thanks in advance!

  okay, i found my solution:
  Blowfish (http://www.counterpane.com/blowfish.html) :
  BlowfishEasy be = new
  e = new BlowfishEasy("somekey");
  String crypted = be.encryptString(plaintext);
  Now, this I call easy and quite secure!
  :-)hey can u please tell me where u got the code from on
  blowfish website above
  I go there and click and the "Free source code" link.
  I then try and download the java implementation (which
  are packed as zip files), When I unzip them though
  the file just has up to the class declaration?????
  eg. public class BlowFish ... {
  and nothing else????
  Can u tell me what u did please

• Public & Private Keys in Keychain

  I have a few dozen of these in Keychain (Login Tab-> Keys) and many are showing that they are for iChat. Others don't seem to be for anything.
  Can I delete these? What are they for?
  TIA.

  Thanks Carolyn, I understand what keychains are and do, it is the ones that appear not at "web form passwords" or application keychains, but "public and private" keychains that have me baffled. I've made a quick screenshot which you can see here. A picture being worth a thousand lame posts on my part ☺ :
  http://www.midilifecrisis.com/keychains.tiff
  Notice the window in the background. That is in the keychain app. I'm leaning towards deleting the list of these seemingly clear "keys" but it's odd that many are listed for "iChat" as is the one I showed in the picture.

• Trying to generate secure rpc key pairs with java

  I see a couple of different classes that will generate public private key pairs in various algorithms for me but it doesn't appear that I can supply a pass phrase to use with these.
  I want to write java code that will create a NIS+ secureRPC key pair for me.
  thanks.

  See now this is a really good question. I don't have an answer, but I really like seeing these types of questions here

• Private Key for RSAalgorithm

  Hello,
  I used RSA algorithm for encryption and i can send the encrypted text to the server , on the server side
  in order to decrypt the message i passed the public key, but how to generate the private key on the server side, i am a beginner in cryptography, can anybody help me , if possible give me the coding for encryption and decryption which will work on the client side for encryption and server side for decryption,i need RSA algorithm for it

  well, but i just used receivers public key to encrypt the data at the senders side, at the receivers side both secret and public key is generated, and the receivers secret key is used to decrypt. The ecrypted text can be accessed at the receivers side but it can't be decrypted, my program part is given below
  Sender's side
  // Create a new instance of Message class, to encrypt / decrypt message
  Message M = new Message();
  // Create a new instance of Keys, to generate keys
  Keys K = new Keys ();
  // Set the Plain Text message
  M.PlainText = ta.getText(); (ta is the text area i displayed the text file)
  // Display the Plain Text message
  System.out.println (" Message:" + M.PlainText);
  // Set the Number of Rounds
  M.NumRounds = 2;
  // Display the Number of Rounds
  System.out.println (" Rounds:" + M.NumRounds);
  // Create RSA Public, Secret key pairs
  K.CreateKeys();
  // Display Public Key individual number
  System.out.println ("Public Key:" + K.PublicKey);
  // Display Secret Key individual number
  System.out.println ("Secret Key:" + K.SecretKey);
  // Display n, the shared number (of Public and Secret Keys)
  System.out.println (" n:" + K.n);
  // Encrypt the Message
  M.Encrypt (publicKey, n);
  /* where publickey and n are generated at the receivers side and saved in the database, which is taken
  at the senders side to encrypt the data. */
  // Display the Encrypted Message
  System.out.println (" Encrypted Message:" + M.CipherText);
  String crp=M.CipherText.toString();
  AT the receiving side
  // Create a new instance of Message class, to encrypt / decrypt message
  Message M = new Message();
  // Create a new instance of Keys, to generate keys
  Keys K = new Keys ();
  // Set the Plain Text message
  //M.PlainText = ta.getText();
  // Display the Plain Text message
  //System.out.println (" Message:" + M.PlainText);
  // Set the Number of Rounds
  M.NumRounds = 2;
  // Display the Number of Rounds
  System.out.println (" Rounds:" + M.NumRounds);
  // Create RSA Public, Secret key pairs
  K.CreateKeys();
  // Display Public Key individual number
  System.out.println ("Public Key:" + K.PublicKey);
  pbk=K.PublicKey.toString();
  // Display Secret Key individual number
  System.out.println ("Secret Key:" + K.SecretKey);
  // Display n, the shared number (of Public and Secret Keys)
  System.out.println (" n:" + K.n);
  bi=new BigInteger (bi.toString().concat(String.valueOf(K.SecretKey)));
  bn=new BigInteger (bn.toString().concat(String.valueOf(K.n)));
  System.out.println("SECRET:"+bi);
  System.out.println("N:"+bn);
  M.Decrypt(bi,bskbi); // where bi is secret generated at the recivers side and bn is retrieved
  from the database , n = (p-1)*(q-1) where p and q are two large priome numbers */
  at the receivers side the encrypted text can be accessed , but the text can be decrypted, what is the problem here, can u help me to change the codings
  thanks in advance

• Install certificare : recover "PRIVATE KEY"

  Hi at all,
  I try to install a SSL certificate for SAP J2EE engine 6.40 and I followed the blog /people/aniket.tare/blog/2005/03/22/ssl-certificate-installation-procedure-for-sap-j2ee-engine-630-150-steps-in-visual-administrator .
  When I executed step number 10 of the blog above, I have placed the cursor on the private key pair e tried to load the signed certificate into the system.
  The file I' ve loaded has the same name of private key, so I lost the private key .
  When I executed the step number 17 I don't find any entry for SSL certificate.
  What do you think about ?
  Thanks,
  Domenico.

  Domenico Petronella wrote:>
  > there is a way to restore the private key ?
  No. Only if you have made a backup.
  If you only have the (public) certificate but not the corresponding private key, then you have lost. In that case you need to create a new keypair resulting in a new certificate; you also have to create a new CSR. If you are using the same subject name, your CA might be kind and will not charge you for the resubmission - if the previous certificate request was in the recent past. At least it's worth a try ...

• Private key from RSAKeyValue

  How to generate private key from <RSAKeyValue> generated by .net. in java? I got public/private key in following format.
  <RSAKeyValue>
  <Modulus>abcdyDdNySesa8sWsd8XRG9rFf1av
  hch9BSG+sgCSYumLm5gzeTxrrpSqUf2VYfLp8USqK4uFBX312368wOEfK+C/viScPZn/hKcq
  vFpd/gKyXJ0M6Oxybn7qJNjVjGtemQDJJdvUPNyV1bcTq0Ugw9lM2cDBVzqHjxxzzACJnab=
  </Modulus>
  <Exponent>AQAB</Exponent>
  <P>/UTBBgeTREzfbV9ev1tKwGtFovxi9BiK5
  crZ3Qns3rt+lrd6Xas6tJhAvedGakGP7eeaLHdXZjeXGnqvKzRHw==</P>
  <Q>8FBLHPccdNh//dRF7Uf6weB829bz+G+NvVrKJMcOzUr9QuKcyRqfZTslKiC/aG9p1PoFxWpeyoPFwDrqFzTYhw==</Q>
  <DP>MTvTPU3fnscdFbb3MaG4gzuArbgQNFc722pkgoakfOS9RQgf/VjKXoFllz7
  05d+z6SHvSGemnEcYtNcbscPt4Q==</DP>
  <DQ>0NOVUihSbB8uqe8sVZ11BEEFfyw9eafGrc
  NVYbww2qjNh+/QetlNpfRNiVxHuIMInnBdz31tveHgV/laLqyDxQ==</DQ>
  <InverseQ>X0KxLXzW2glIhkk5lP0OnQVWfTutwo9Qg4DSk/5MtbQMMek8SHju7X9Ae2iL4DDRbWG/5mbrPdQ1yQg+GXCWbw==</InverseQ>
  <D>NCBukE3dm5+xRXEY4qWk3Xe8XFvIHT5vENOzTZE4jz0aBPxzTYLIgbkZP+lXgllc4mricqYSsD3K8vCBMQXEhqHkc6pSiYfesZG3wlujJGRyVoT1pVk5M460RwJfwPsO0TxfYCYU80CIfZNzFIEpGEp6pAUF1TQbnTre11aFjU=</D>
  </RSAKeyValue>
  I was able to generate public key as below.
  BigInteger publicExponent = new BigInteger(new sun.misc.BASE64Decoder().decodeBuffer("AQAB"));
  RSAPublicKeySpec rsaPublicKeySpec = new RSAPublicKeySpec(modulus,publicExponent);
  But privateKey need privateExponent
  RSAPrivateKeySpec rsaPrivateKeySpec = new RSAPrivateKeySpec(modulus,privateExponent);
  How to get privateExponent from <RSAKeyValue> ?
  RSAPrivateCrtKeySpec need following parameters. Can not find where it map in <RSAKeyValue>
  RSAPrivateCrtKeySpec(BigInteger modulus,
  BigInteger publicExponent,
  BigInteger privateExponent,
  BigInteger primeP,
  BigInteger primeQ,
  BigInteger primeExponentP,
  BigInteger primeExponentQ,
  BigInteger crtCoefficient)
  Thanks,
  DP

  PKCS#1 1.5 definition:
     RSAPrivateKey ::= SEQUENCE {
       version Version,
       modulus INTEGER, -- n
       publicExponent INTEGER, -- e
       privateExponent INTEGER, -- d
       prime1 INTEGER, -- p
       prime2 INTEGER, -- q
       exponent1 INTEGER, -- d mod (p-1)
       exponent2 INTEGER, -- d mod (q-1)
       coefficient INTEGER -- (inverse of q) mod p }RSAParameters as documented in .NET Framework Class Library:
  D Represents the D parameter for the RSA algorithm.
  DP Represents the DP parameter for the RSA algorithm.
  DQ Represents the DQ parameter for the RSA algorithm.
  Exponent Represents the Exponent parameter for the RSA algorithm.
  InverseQ Represents the InverseQ parameter for the RSA algorithm.
  Modulus Represents the Modulus parameter for the RSA algorithm.
  P Represents the P parameter for the RSA algorithm.
  Q Represents the Q parameter for the RSA algorithm. The KeySpec (CRT = Chinese Remainder Theorem)
  RSAPrivateCrtKeySpec(BigInteger modulus, 
  BigInteger publicExponent,
  BigInteger privateExponent,
  BigInteger primeP,
  BigInteger primeQ,
  BigInteger primeExponentP,
  BigInteger primeExponentQ,
  BigInteger crtCoefficient)So we could try some guessing:
  modulus <- Modulus
  publicExponent <- Exponent
  privateExponent <- D
  primeP <- P
  primeQ <- Q
  primeExponentP <- DP
  primeExponentQ <- DQ
  crtCoefficient <- InverseQTry it and tell me if it worked. Good luck.

• BizTalk Server 2013 SFTP Adapter with private key - Did not poll any files

  Hello, 
  We have a requirement to connect SFTP secure site with the private key and polling files.   Initially I have
  tested BizTalk Server 2013 SFTP Adapter receiver Port using  Bitvise SSH SFTP Server tool and it was working perfectly in our local network environment( with public private key authentication).
  However when we connected to Client SFTP server with private key authentication, It successfully connected to SFTP Server but
  did not poll any files from SFTP Site.  I added only one file to SFTP Server ( 145 kb file) for testing purpose.
  However BizTalk Server 2013 SFTP Send Adapter is working well with the same configuration.
  I could not find any errors in Event viewer also.  I can download\upload file using WinSCP tool .
  So I downloaded nSoftware SFTP Adapter trial version and deployed on server. nSoftware SFTP adapter  is also working find
  without any issues for Client SFTP Site.
   This is the configuration on SFTP Receive Adapter
  This is how SFTP Server download folder permission configured. I have got this details using WinSCP tool. 
  <o:p></o:p>
  Appreciate your help on this.<o:p></o:p>
  Thanks<o:p></o:p>
  PrabathD<o:p></o:p>

  BizTalk Adapter for SFTP is where the polling logic is implemented. It is not part of the SFTP Client logic. any SFTP Client is for User Interaction and you do what you want/when you want.
  The BizTalk Receive however is for purposes of automation and the adapter polls the receive location using the credentials every polling interval to check for the files matching the filter. When it find a file, it will read and publish to message box or
  submit to pipeline for processing. Your setting the polling interval to 0 (ZERO) might actually be disabling the polling.
  Set your poll interval to a non-zero value and check the behavior.
  Regards.

• Creating a single public key and multiple private keys

  Hello,
  I am new to java cryptography. The problem statement is :-
  We have an accounting application, with flexibility of number of users and companies. The number of users and companies for this application has to be restricted based on the license the user has. That is the user will download our application via web while the user downloads he has to be given the key according to the license he has requested (i.e. single or multiple users/companies), I am unable to get the logic of private and public keys as such, y because which ever alogorithm i saw will generate a public and private key in pairs hence i am bit confused. Clearly, For ever additional user (or company) we r charging additional amount hence different license (keys) have to be generated dynamically for different users. I think this can be achived by creating one single public key and multiple private keys, but i am not sure . Please help me out.

  Hi kazim
  would u pls elaborate this , since i am working on same kind of scenario and finding solutions is difficult . Since encryption is done at our end and wen some user downloads an application he is unable to track where it was encrypted . What i have undestand about public /private is that they work in agreement between client and server and both has to come to agreement to share the data. Pls correct me if i am wrong.
  Ours is different senario we will send some key in download application and will want him to decrypt it . What would u suggest for this kind of scenario?
  Thanks in advance
  Janesh