7 | | Creating encryption keys crypt_prog -genkey n private_keyfile public_keyfile :: |
8 | | Create a key pair with n bits (always use 1024). Write the keys in encoded ASCII form to the indicated files. |
9 | | The following commands generate the file upload and code signing key pairs. BOINC_KEY_DIR is the directory where the keys will be stored. The code signing private key should be stored only on a highly secure (e.g., a disconnected, physically secure) host. |
| 7 | == Creating encryption keys == |
| 8 | |
| 9 | crypt_prog -genkey n private_keyfile public_keyfile:: |
| 10 | Create a key pair with n bits (always use 1024). Write the keys in encoded ASCII form to the indicated files. |
| 11 | |
| 12 | The following commands generate the file upload and code signing key pairs. BOINC_KEY_DIR is the directory where the keys will be stored. The code signing private key should be stored only on a highly secure (e.g., a disconnected, physically secure) host. |
20 | | crypt_prog -sign file private_keyfile :: |
21 | | Create a digital signature for the given file. Write it in encoded ASCII to stdout. |
22 | | crypt_prog -sign_string string private_keyfile :: |
23 | | Create a digital signature for the given string. Write it in encoded ASCII to stdout. |
24 | | crypt_prog -verify file signature_file public_keyfile :: |
25 | | Verify a signature for the given file. |
26 | | crypt_prog -test_crypt private_keyfile public_keyfile :: |
27 | | Perform an internal test, checking that encryption followed by decryption works. |
| 22 | == Generating signatures == |
| 23 | |
| 24 | crypt_prog -sign file private_keyfile:: |
| 25 | Create a digital signature for the given file. Write it in encoded ASCII to stdout. |
| 26 | crypt_prog -sign_string string private_keyfile:: |
| 27 | Create a digital signature for the given string. Write it in encoded ASCII to stdout. |
| 28 | crypt_prog -verify file signature_file public_keyfile:: |
| 29 | Verify a signature for the given file. |
| 30 | crypt_prog -test_crypt private_keyfile public_keyfile:: |
| 31 | Perform an internal test, checking that encryption followed by decryption works. |