Interconvertibility of asymmetric key containers (e.g. X.509, PGP, OpenSSH)

Question

Interconvertibility of asymmetric key containers (e.g. X.509, PGP, OpenSSH)

Are asymmetric cryptographic keys fundamentally interchangeable between the main formats of key containers? For example, is it possible to convert an X.509 key file to a PGP or OpenGPG key file?

And - provided that the answer is yes - it is "neutral security" in order to save one key pair in any format and convert to whatever format the container file is needed for the case?

I'm a little tired of supporting so many key pairs for X.509, OpenGPG and SSH, when they are all RSA based.

+4

security cryptography ssh gnupg x509

C. Lawrence Wenham Sep 11 '08 at 19:18

source share

3 answers

You will find how to convert kes between these containers: http://sysmic.org/dotclear/index.php?post/2010/03/24/Convert-keys-betweens-GnuPG,-OpenSsh-and-OpenSSL

+2

Jezz Mar 25 '10 at 13:38

source share

I would also look at OpenSSL. It has so many different -in and -out functions that can probably convert certificates. from one type to another.

Take a look at http://marc.info/?l=openssl-users&m=105162569405053&w=2

0

Jarava Sep 27 '08 at 12:21

source share

tqbf · Accepted Answer · 2008-09-11T19:29:23+0000

Yes and no: yes, RSA keys embedded in certificates and private keys are just numbers. You can extract them from the certificate and use them to create keys in other formats. This is usually done to convert between different certificate formats.

PGP has some X.509 support for S / MIME, but is not able to use X.509 privkeys verbatim.

SSH has beta support for the direct use of X.509 keys and certificates.

Interconvertibility of asymmetric key containers (e.g. X.509, PGP, OpenSSH)

More articles: