Help with PGP and RSA for secure FTP transmission

  • Thread starter Thread starter TumblingDice
  • Start date Start date
  • Tags Tags
    Transmission
Click For Summary
SUMMARY

This discussion focuses on the generation and delivery of PGP and RSA keys for secure FTP transmission of confidential legal agreements using Windows and IIS. The user successfully utilized Kleopatra for PGP key generation and PuttyGen for RSA key generation. Key delivery methods discussed include pasting the public keys directly into a Word document or providing links to the key files hosted on a server. The importance of ensuring the keys are of sufficient length and the distinction between public and private keys were emphasized as critical factors in the process.

PREREQUISITES
  • Understanding of PGP (Pretty Good Privacy) and RSA (Rivest-Shamir-Adleman) encryption methods
  • Familiarity with key generation tools such as Kleopatra and PuttyGen
  • Basic knowledge of secure FTP protocols and their differences from traditional FTP
  • Experience with Windows and IIS server environments
NEXT STEPS
  • Research detailed tutorials on generating PGP keys using Kleopatra
  • Explore step-by-step guides for RSA key generation with PuttyGen
  • Learn about secure methods for delivering public keys, including best practices for email communication
  • Investigate the differences between SSH File Transfer Protocol and traditional FTP for secure file transmission
USEFUL FOR

This discussion is beneficial for IT professionals, system administrators, and anyone involved in secure data transmission, particularly those working with PGP and RSA encryption in a Windows and IIS environment.

TumblingDice
Gold Member
Messages
471
Reaction score
47
I've been asked to complete a project that requires secure FTP transmission of confidential legal agreements. Despite a healthy background/experience in data communications in the banking industry, time has passed and I've never used PGP or RSA before. NOTE: Everything will be done under Windows and/or IIS. I have a local IIS server for developing/testing, and a public IIS server (if need be) to support the testing phase.

I need to submit a form to apply for secure connectivity. It's asking for both PGP and RSA public keys that we'll use to download new files

My #1 "void" is how to generate the keys properly. Number #2 is how to deliver them in a professional manner. I've tried on my own, using Kleopatra for PGP generation, and "PuttyGen" on the RSA side. I'm feeling "lost at sea"...

My goal is to completely understand before completing a 'perfect' a software solution, yet I'd appreciate a 'recipe' to follow at the moment, hoping to catch up as I go.

Here is the workflow diagram:
Secure-FTP.png


Can anyone help with step-by-step recipes to create both the PGP and RSA keys, and subsequent steps to "do it the right way"...?

The application form I need to submit is a Word doc with numbered questions to fill in. So - in my response to "Public PGP Key for Data Encryption", should I post the '*.pgp' file to a server and provide a link to it? Or should I just 'paste' the open text of the certificate into the Word doc? (Or maybe both.)

And how to deliver the same for the RSA side? Can I paste the open text into the Word doc, or does it need to be installed on a server and communicated from there? My local server isn't public - so I can install on the public server if that's the correct way to begin?

Much TIA!
 
Technology news on Phys.org
Thanks for the post! Sorry you aren't generating responses at the moment. Do you have any further information, come to any new conclusions or is it possible to reword the post?
 
It looks like you're actually using SSH File Transfer Protocol, which isn't related to traditional FTP and its secure variants. I think your main concern when generating keys is to make sure they're long enough. As far as step-by-step instructions for generating the keys, I'd just google for that info. There are a lot of tutorials on how to do that.

The easiest way to send the public keys is to simply send the text file containing the key, so pasting into the Word document should be fine. Just make sure you send the public key, not the private one.
 
@Greg Bernhardt - Thanks a bunch for the 'bump'. I swallowed my pride Friday afternoon and called the source... Learned that I did everything the right way to generate keys, and the techies were happy to hear from me to complete setup on their end. I'm going to post more to the thread this week for those that follow. ;)

@vela - Thank you for responding! Your info is all "spot on". I used Bing (try it sometime) to locate key generators I felt comfortable with. That went well, and I'll post more info for the PGP and RSA solutions I found RSN. Just as you said, all was "text", yet the files had their own unique extensions. I learned this during my "rapid setup" tech contact :), and communicated the info natively by attaching the PGP and ASC files to an email during the phone call.

All the best!
TD
 

Thread 'Who is responsible for the software when AI takes over programming?'

I tried a web search "the loss of programming ", and found an article saying that all aspects of writing, developing, and testing software programs will one day all be handled through artificial intelligence. One must wonder then, who is responsible. WHO is responsible for any problems, bugs, deficiencies, or whatever malfunctions which the programs make their users endure? Things may work wrong however the "wrong" happens. AI needs to fix the problems for the users. Any way to...
View full post »

Similar threads

Comp Sci Weird File Output behavior in java
  • · Replies 1 ·
Replies
1
Views
2K
BRS: PKI Cryptosystems for SA/Ms: A Tutorial
  • · Replies 13 ·
Replies
13
Views
4K
Math possibly in need of all-open-source software for testin
  • · Replies 12 ·
Replies
12
Views
2K
Requesting suggestions for languages, libraries, and architectures for parallel (and sometimes non parallel) numerical and scientific computations
  • · Replies 8 ·
Replies
8
Views
4K
Schools Simple Effort To Assist Your Instructor During Remote Learning
  • · Replies 3 ·
Replies
3
Views
1K
Current and Future AI Threats to Humanity and the Human Response
  • · Replies 10 ·
Replies
10
Views
5K
Neuroscience MS considering switch to EE. Help?
  • · Replies 1 ·
Replies
1
Views
2K
Carrier IQ Your cell phone's secret big brother
  • · Replies 1 ·
Replies
1
Views
2K
Pre-Calc/Calc I or AP Calc BC online?
  • · Replies 7 ·
Replies
7
Views
6K
A syllabus of books/literature from calculus to group theory to QFTs
  • · Replies 26 ·
Replies
26
Views
18K