pgp key format

Question

calccrypto 0 Light Poster

14 Years Ago

hopefully this is the right place to post this:

can someone tell me how pgp pub/private keys are formatted? there seems to be a lack of explainations on how to actually read them (and im terribly inept at reading source codes)

obviously they are in base 64. i mean beyond that. which part is the version number, the cipher, the username, email, etc? how big is each part?

hopefully, your responses can be something like:

"take this:
{
version (2 bytes, 00, 01, or 02)
cipher (0 = RSA, ...)
key size (x number of bytes)
modulus (n)
e
etc.
etc.
}
and combine it into one big string and change it to base64"

thanks in advance to all who answer

2 Contributors
14 Replies
144 Views
1 Week Discussion Span
Latest Post 14 Years Ago Latest Post by calccrypto

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

Techi -1 Light Poster · Answer 1 · 2010-03-01T02:16:04+00:00

ur msg is not clear whether u r just a recipient of an encrypted msg u r trying to decipher. d'u actually have a key?

if u just want to know how it works, then go to
http://www.pgpi.org/doc/pgpintro/#p10

calccrypto 0 Light Poster · Answer 2 · 2010-03-02T17:39:20+00:00

i mean the actual keys that i generated (or someone else's public key). i want to know how pgp-derivatives read the key. since the data is not exactly stored like: "cipher: RSA, key size: 512bits, email: aaa@yahoo.com". i only know a bit, like: (i think) if the first byte of the key (both public and private) is 0x01 (without the 0x), it means the cipher is RSA. what about the rest of data?

on some linux systems, you can double click a key and it will be put on the key ring, showing you all the data: the name, email, validity/expiration date, key size, etc. which parts of the public/private keys describe these properties?

Techi -1 Light Poster · Answer 3 · 2010-03-02T18:08:02+00:00

r u a programmer? i'm sure u can find ur answers at that main site. i have included this text file u might find useful:
ftp://ftp.pgpi.org/pub/pgp/2.x/doc/pgformat.txt

Key ID
------
Some packets use a "key ID" field. The key ID is the least
significant 64 bits of the RSA public modulus that was involved in
creating the packet. For all practical purposes it unique to each
RSA public key.

User ID
-------
Some packets contain a "user ID", which is an ASCII string that
contains the user's name. Unlike a C string, the user ID has a
length byte at the beginning that has a byte count of the rest of the
string. This length byte does not include itself in the count.

calccrypto 0 Light Poster · Answer 4 · 2010-03-03T09:33:15+00:00

Thanks for the file. i think its what im looking for.

im not a very good programmer, but yes, i do do a little python and TIBASIC, but that's it

the only reason im not looking at source codes or rfc is because im terrible at reading other people's codes, and i find rfcs very boring. i read pieces of them if i need to, but i try to avoid them

calccrypto 0 Light Poster · Answer 5 · 2010-03-08T00:55:45+00:00

i dont get some of the first parts of the data. it says:

Key ID
------
Some packets use a "key ID" field. The key ID is the least
significant 64 bits of the RSA public modulus that was involved in
creating the packet. For all practical purposes it unique to each
RSA public key.

however, in key servers like http://stinkfoot.org:11371/pks/lookup?op=index&search=12345678&fingerprint=on , it shows that the keyid is 32 bits, not 64. i dont get it

Techi -1 Light Poster · Answer 6 · 2010-03-08T01:16:58+00:00

key IDs are not 32 bits long - they are 64 bits long. the 8 character (32 bit) key ID shown for convenience, but internally it uses all 64 bits.

your answer is here:
http://lists.gnupg.org/pipermail/gnupg-users/2004-January/021356.html

calccrypto 0 Light Poster · Answer 7 · 2010-03-08T02:46:20+00:00

thank you so much! where do you find all this? google seems to hate me or something

Techi -1 Light Poster · Answer 8 · 2010-03-08T05:03:23+00:00

u just need to ask the right questions. usually when we know what the questions r, the answers will come.

most importantly, u need to enjoy what u do in order to do well. Be confident in order to progress.

yours philosophically .. :-)

calccrypto 0 Light Poster · Answer 9 · 2010-03-08T05:21:12+00:00

well, i do enjoy learning about crypto stuff, but i suck at wording things (statements, questions, etc.) properly for some reason.

calccrypto 0 Light Poster · Answer 10 · 2010-03-08T05:38:13+00:00

ive hit another snag:

Offset  Length  Meaning
(bytes) (bytes)
4          4       Timestamp of key creation
8          2       Validity period, in number of DAYS (0 means forever)
10         1	   Algorithm byte for RSA (=1 for RSA).

i have these 3 sets of values

01001001 11101100 11111100 01100101 

00010001 00000100

00000000

the first set is the timestamp, stating that i created the key on 4/20/2009. the next one, i believe is the validity period, is 4356 days, but that doesnt make sense, since in linux, i see it as non-expiring (which would make it 0, but that's the third set). the last one, i guess is the algorithm ID, but I dont know what the number for ElGamal is. that file you found only mentions RSA.

any ideas?

calccrypto 0 Light Poster · Answer 11 · 2010-03-08T07:10:24+00:00

forget the algorithm id values. i found them

calccrypto 0 Light Poster · Answer 12 · 2010-03-08T07:47:05+00:00

wait. i think i might have found what im looking for

Techi -1 Light Poster · Answer 13 · 2010-03-08T16:12:37+00:00

i woke up this morning n saw ur posts from having the second problem to .. giving up to .. finding the solution all by yourself (well done there!)

dont u have to sleep? not a good idea to try solve a problem with no rest. sometimes the answer comes after a good rest.

i think u r doing fine.

calccrypto 0 Light Poster · Answer 14 · 2010-03-08T17:30:43+00:00

thanks for being so encouraging!

and i did sleep for 7 hours or so.