tags:

views:

91

answers:

3
Q: 

Is it possible to use elliptic curve cryptography for encrypting data?

So far I have only seen it used in digital signatures and key agreement protocols. Can it be used like RSA to actually encrypt data? Are there any libraries for this?

Edited:

I need something like RSA. Encrypt the data with the recievers public key so later he can decyrpt it with his private key.

I know ECDH can be used to send a secret value to someone but you don't decide what data is sent. Unlike the "regular" DH with ECDH the resulting secret value is always the same since it only depends on the keypairs. I guess I could use this value as a key to a symmetric cipher and encrypt yet another key which is chosen by me and encrypt the data with that key (if I want to support multiple recievers). Is this a good way?

A: 

Like RSA, ECC an be used for encrypting data. In fact, this mode is used for keying protocols.

Like RSA, ECC is relatively slow, hence its more common to negotiate session keys using ECC and switch to symmetric ciphers after one has been chosen.

Yann Ramin  2010-06-22 23:57:03
How can it be used like RSA? All the keying protocols I'm aware of athe use ECC are key agreement, whereas RSA is usually used for key transport.
GregS  2010-06-23 00:47:26
Do you mean ECDH? I don't this actually encrypts data. You don't actually decide what is the secret data you send. It is dependent on both keypairs. I need something like the RSA encrypted emails where you choose a random symmetric key and ecrypt that with one or more public keys. I will edit the question to make it more clear.
stribika  2010-06-23 00:55:53
A: 

Bouncy castle support this algorithm. (supposing you are familiar with Java) http://www.bouncycastle.org/wiki/display/JA1/Using+Elliptic+Curve

h3xStream  2010-06-23 00:02:40
I was just looking at bouncy castle before posting this question. I only seen the Org.BouncyCastle.Crypto.Agreement.ECDH*, Org.BouncyCastle.Crypto.Signers.ECDSASigner classes. Can you tell me how to do this or which class to use? It should be something like RSAEngine.
stribika  2010-06-23 00:46:40
I have not use Bouncy castle for EC before. Check the link I provided.. code samples are given.
h3xStream  2010-06-23 01:03:37
+2  A: 

It can be used with ElGamal-style construct to encrypt the bits. A more modern instance of this is the IES scheme, ECIES in your case. Bouncycastle supports this with the IESEngine class. In particular the first constructor does what you seem to be trying to do.

GregS  2010-06-23 00:46:47
This looks good. Thank you.
stribika  2010-06-23 01:27:32

related questions

How to implement password protection for individual files?
Encrypting appSettings in web.config
Usefulness of SQL Server "with encryption" statement
How can I use a key blob generated from Win32 CryptoAPI in my .NET application?
CodeReview: Tiny Encryption Algorithm for arbitrary sized data
Simple encryption implementation in C
Which hard disk encryption software to choose?
Passing untampered data from Flash app to server?
How do I prevent replay attacks?
Is there a best .NET algorithm for credit card encryption?
Encrypt data from users in web applications
How to encrypt one message for multiple recipients?
Two-way password encryption without ssl
What's the answer to this Microsoft PDC challenge?
GPG: How does key signing work and how is it done?
Secure Online Highscore Lists for Non-Web Games
Programmatically encrypting a config-file in .NET
How do I use 3des encryption/decryption in Java?
Encryption in C# Web-Services
Suitable alternative to CryptEncrypt
Can a proxy server cache SSL GETs? If not, would response body encryption suffice?
C# - CryptographicException: Padding is invalid and cannot be removed
How can I encode xml files to xfdl (base64-gzip)?
How do I add SSL to a .net application that uses httplistener - it will *not* be running on IIS
Encrypting Passwords