RSA cryptography between Python and Java

Michael Ströder michael at stroeder.com
Mon Jul 27 13:35:15 CEST 2009


Piet van Oostrum wrote:
> Please note that the text to be encrypted must be smaller than the key
> size (at least 11 bytes smaller). You shouldn't encrypt large data with
> RSA anyway: it is too slow. Normally you would encrypt a session key
> with RSA and encrypt the data with the session key using a symmetric
> algorithms like AES.

I'd use CMS (AKA PKCS#7) for encrypted/signed data with X.509 certs. One
should not invent another message format.

Ciao, Michael.

-- 
Michael Ströder
E-Mail: michael at stroeder.com
http://www.stroeder.com



More information about the Python-list mailing list