EldoS | Feel safer!

Software components for data protection, secure storage and transfer

issues with EncryptAndSign

Posted: 09/10/2009 18:40:03
by Dmitry K (Basic support level)
Joined: 09/03/2009
Posts: 5

Creating signed encrypted file with SecureBox 6.0

algorithm: 3DES

when testing decryption with Secure Box - getting error "Unsupported stream cipher algorithm"

when testing decryption with PGP Desktop 6.5.8 - getting file decrypted but log pops up with an error "Bad Signature"

any clues?
Posted: 09/10/2009 23:56:39
by Ken Ivanov (Team)

1) How exactly was the file created? Did you try creating it with PGPFilesDemo?
2) PGP Desktop does not understand encrypted and signed files containing more than one signature. Please re-check that the SigningKeys keyring only contains a single key (and if that key has subkeys, their Enabled properties are turned off).
Posted: 09/11/2009 14:00:42
by Dmitry K (Basic support level)
Joined: 09/03/2009
Posts: 5

1) Yes, I did try it PGP Demo - to be specific - with

signing key - 1 private key (ours)
encrypting key - 1 public key (client's)

Re Subkeys - I noticed that when PGPWrter event OnKeyPassPhrase fires - it does it two times - one for key, another for subkey.

you are saying, i should have disabled that subkey?

a side note -- same test was done later with decryption using PGP Desktop 9.9 - no issues (no Bad Signature warning)
Posted: 09/11/2009 14:17:58
by Eugene Mayevski (Team)

First of all, please upgrade to SecureBlackbox 7.x. It doesn't make sense to evaluate old versions. If you are using a licensed version, please assign the license ticket to your user account as described in the registration e-mail.

Sincerely yours
Eugene Mayevski
Posted: 09/14/2009 08:56:11
by Dmitry K (Basic support level)
Joined: 09/03/2009
Posts: 5


upgraded to 7.0.156.

issue showed up the same, until disabled subkeys. then it went smooth.

so question comes - where in documentation did it say that subkeys must be disabled? it is great that you could figure things fast, but wonder what did I miss in Help Docs.
Posted: 09/14/2009 09:20:14
by Eugene Mayevski (Team)

They must not. It's just some dumb applications from you-know-who that don't understand the data encrypted this way (using keys and subkeys) so when disabling the subkeys, you are using a workaround added specifically for those applications. Guess we'd need to set Enabled to false for subkeys by default. We will discuss this here.

Sincerely yours
Eugene Mayevski
Posted: 09/14/2009 09:24:42
by Eugene Mayevski (Team)

Appears that Enabled can't be set to false by default due to architecture of OpenPGP key system. So one should address their complaints to the vendor of the decrypting application.

Sincerely yours
Eugene Mayevski
Posted: 09/14/2009 10:54:56
by Dmitry K (Basic support level)
Joined: 09/03/2009
Posts: 5

interesting. official version 9.9 of PGP Desktop did not have issues decrypting data. that was freeware 6.5.8 that did.



Topic viewed 1826 times

Number of guests: 1, registered members: 0, in total hidden: 0


Back to top

As of July 15, 2016 EldoS business operates as a division of /n software, inc. For more information, please read the announcement.

Got it!