You use the recipient's public key to encrypt the data.
----- Original Message -----
From: <[log in to unmask]>
To: <[log in to unmask]>
Sent: Tuesday, December 11, 2001 3:11 PM
Subject: [HP3000-L] OT: PGP sanity check
> X-no-Archive:yes
> Company A is sending some of their financial data to a Service Bureau.
They
> have yet to determine whether Company A will ftp the data to the Service
> Bureau, or if the Service Bureau will pick up the file from Company A.
> That's a bad sign. Company A will look at their options for encrypting the
> data before sending, but since the Service Bureau has PGP software, and
> nothing else, this choice does seem obvious.
>
> My question is, which is the correct approach? Does Company A use their
own
> encryption key, or do they use the Service Bureau's (public?) encryption
> key? Supporting URLs welcome. I have my own idea about which key should be
> used, but no one has asked me about that part of this.
>
> Greg Stigers
> http://www.cgiusa.com
> A-toot a-toot, a-toot diddle-ee-ada-toot
> - [log in to unmask]
>
> * To join/leave the list, search archives, change list settings, *
> * etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
|