I have a specific requirement where I want that data between 2 users to be e2e encrypted.
(我有一个特定的要求,我希望2位用户之间的数据进行e2e加密。)
Users have a main RSA KeyPair where the public key is available to everyone and the private key is locked in the AndroidKeyStore .
(用户具有一个主RSA KeyPair ,所有人均可使用公用密钥,而专用密钥则锁定在AndroidKeyStore中 。)
So far so good, but RSA is limited in both speed and encryption size. (到目前为止还算不错,但是RSA的速度和加密大小都受到限制。)
Because of this, I decided to just use the RSA Public Key to encrypt an extra generated AES Key and send this encrypted key to the second user.
(因此,我决定只使用RSA公钥来加密额外生成的AES密钥,然后将此加密的密钥发送给第二个用户。)
Now both users have the same AES key, allowing them to encrypt and exchange data with each other.
(现在,两个用户都具有相同的AES密钥,从而可以彼此加密和交换数据。)
Since the raw AES Key was never actually exposed over the Internet,
(由于原始AES密钥从未真正通过Internet公开,)
but both users use the same key to exchange data, can this be called a valid end-to-end encryption?
(但是两个用户都使用相同的密钥交换数据,这可以称为有效的端到端加密吗?)
ask by Florian G. translate from so 与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
