[openssl-users] When to use a key or password

Warron French warron.french at gmail.com
Sun Jul 10 04:25:53 UTC 2016


Michel, merci beaucoup, for the explanation.

It does clear things up for me.  I appreciate it,

Warron

On 7/8/2016 6:08 PM, Michel wrote:
>
> Hi,
>
> You need to remember a password. Passwords should never be stored.
>
> Keys are binary data (even if they look as text because they are hexa 
> or base64 encoded).
>
> Secret keys can be 'derived' from a password to be used when 
> encrypting or decrypting.
>
> Sometime you need to store an ENCRYPTED secret key (generally using 
> another password).
>
> see https://en.wikipedia.org/wiki/Key_(cryptography) 
> <https://en.wikipedia.org/wiki/Key_%28cryptography%29>.
>
> IV means 'Initial Vector', which is random binary data needed to 
> 'start' encryption or decryption.
>
> See https://en.wikipedia.org/wiki/Initialization_vector
>
> Hope it helps,
>
> Regards,
>
> Michel.
>
> *De :*openssl-users [mailto:openssl-users-bounces at openssl.org] *De la 
> part de* Warron French
> *Envoyé :* jeudi 7 juillet 2016 22:37
> *À :* openssl-users at openssl.org
> *Objet :* [openssl-users] When to use a key or password
>
> Is there any good rule of thumb for when to use:
>
> *-k <password>* versus
>
> *-K <key>*
>
> Also, what does the term IV refer to in reference to *-iv IV*?
>
> Thanks in advance,
>
> Warron
>
>
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20160710/f8cfa72d/attachment.html>


More information about the openssl-users mailing list