Changes between Version 6 and Version 7 of KeySetup


Ignore:
Timestamp:
Feb 6, 2008, 8:23:00 AM (16 years ago)
Author:
davea
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • KeySetup

    v6 v7  
    1 = The encryption utility =
     1= File signing utilities =
     2
     3Use '''sign_executable''' to sign executable files:
     4
     5{{{
     6sign_executable file_to_sign private_key_file > signature_file
     7}}}
     8sign_executable is compiled in the lib/ directory,
     9and installed in your project's bin/ directory.
     10It writes the signature to stdout.
     11
     12== Creating encryption keys ==
    213
    314The program `lib/crypt_prog` performs various encryption tasks.
    415
    5 crypt_prog is built by the standard build procedure on Unix systems. You can also build it on Windows (with Visual Studio 2003) using the project file `win_build/crypt_prog.vcproj`.
     16 crypt_prog -genkey nbits private_keyfile public_keyfile::
     17        Create a key pair with nbits bits (always use 1024). Write the keys in encoded ASCII form to the indicated files.
    618
    7 == Creating encryption keys ==
    8 
    9  crypt_prog -genkey n private_keyfile public_keyfile::
    10         Create a key pair with n bits (always use 1024). Write the keys in encoded ASCII form to the indicated files.
    11 
    12 The following commands generate the file upload and code signing key pairs. BOINC_KEY_DIR is the directory where the keys will be stored. The code signing private key should be stored only on a highly secure (e.g., a disconnected, physically secure) host.
     19The following commands generate the file upload and code signing key pairs.
     20BOINC_KEY_DIR is the directory where the keys will be stored.
     21The code signing private key should be stored only on a highly secure (e.g., a disconnected, physically secure) host.
    1322{{{
    1423crypt_prog -genkey 1024 BOINC_KEY_DIR/upload_private BOINC_KEY_DIR/upload_public
    1524crypt_prog -genkey 1024 BOINC_KEY_DIR/code_sign_private BOINC_KEY_DIR/code_sign_public
    1625}}}
    17 Or, in the test/ directory, run
    18 {{{
    19 gen_keys.php
    20 }}}
    2126
    22 == Generating signatures ==
     27Other functions of crypt_prog:
    2328
    2429 crypt_prog -sign file private_keyfile::
    25         Create a digital signature for the given file. Write it in encoded ASCII to stdout.
     30        Create a digital signature for the given file (same as sign_executable).
    2631 crypt_prog -sign_string string private_keyfile::
    27         Create a digital signature for the given string. Write it in encoded ASCII to stdout.
     32        Create a digital signature for the given string, write it to stdout.
    2833 crypt_prog -verify file signature_file public_keyfile::
    2934        Verify a signature for the given file.