McAfee MEJCAE-AM-DA Product Guide - Page 47
Signing with a specific private key, Signing and encrypting
View all McAfee MEJCAE-AM-DA manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 47 highlights
Working with Digital Signatures Signing information Note that the recipient must still use E-Business Server to verify the signature. For more information on verifying signatures, see Verifying a digital signature on page 46. For more information on using the CLEARSIG parameter, see CLEARSIG on page 92. Signing with a specific private key If you have more than one private key on your private keyring, E-Business Server automatically uses the default key (specified using the DEFAULT-KEY parameter in ebs.cfg) to sign your messages. To sign using a private key that is not your default private key, you must specify a different key using the --sign-with modifier. ebs --sign --sign-with You must supply the passphrase for the private key. Signing and encrypting To sign a plaintext file with your secret key and encrypt it with the recipient's public key in a single operation, you combine the --encrypt option with the --sign option. You can optionally specify which private key to use to sign the file. ebs --encrypt --user --text --sign [--sign-with ] For example, if Cee Wong wants to encrypt secretfile.txt to Sean Adams and sign it with her private key, she would enter the following: ebs --encrypt secretfile.txt --user "Sean Adams" --text --sign [--sign-with "Cee Wong"] The encrypted and signed file can then be sent through email. The following is an example of an encrypted and signed message: -----BEGIN EBS MESSAGE----Version: EBS 8.x aMIvPrqNLedIezbfJDPNr2H8dcjW5FPnMeKXn4+063rt2JpqvZZRLYilJLS6RYGBgCMlIVSgszUzOyi/PU0jLr1DIKs0tSE1RyC9 LLVIoAcrnJFZVKqTkp+txjQzVAAkQKfowHrZLBnZmWwLJntk/hadk01T+xqQSahWwowHrZLBnZmWwLJntk/hadk01T+xqQSahWwz zY67c+23aMIvPrqNLedIezbfJDPNr2H8dcjW5FPnMeKXn4+063rt2JpqvZZRLYilJLS6RYGBgCMlIVSgszUzOyi/PU0jLr1DIKs0 tSE1RyC9LLVIoAcrnJFZVKqTkp+txjQzVAAkQKfowHrZLBnZmWwLJntk/hadk01T+xqQSahWw+xqQSahWwowHrZLBnZmWwLJntk/ hadk01T+xqQSahWwzzY67c+23aMIvPrqNLedIezbfJDPNr2H8dcjW5FPnMeKXn4+063rt2JpqvZZRLYilJLS6RYGBgCMlIVSgszU zOyi/PU0jLr1DIKs0tSE1RyC9LLVI== =kggl -----END EBS MESSAGE----- Creating a detached signature In most cases, signature certificates are physically attached to the text they sign. This makes it convenient to verify signatures. You can, however, create a separate, detached signature, and then send both files (the text file and the signature certificate file) to the recipient. This feature is useful when more than one party must sign a document such as a legal contract, without nesting signatures. Each person's signature is independent. 45 E-Business Server™ 8.6 Product Guide