[pycrypto] RSA exportKey question with bcrypt?

Manuel Pégourié-Gonnard mpg at elzevir.fr
Mon Jul 15 23:48:35 PDT 2013

Hi all,

On 15/07/2013 22:52, Legrandin wrote:
> I hope I understand correctly this time.
> The presence of a header like:
> Proc-Type: 4,ENCRYPTED
> DEK-Info: AES-256-CBC,16D792053CB9E5981B06E020900F86EA
> [...]
> indicates that the PEM envelope is encrypted and that the inner PKCS#8
> structure is clear.
I may be mistaken, but I think this header indicates that the key inside the PEM
envelope is in "naked" PKCS#1 format, not wrapped in PKCS#8.

My understanding is as follows:

-----BEGIN RSA RIVATE KEY----- 	PKCS#1 in a PEM envelope
-----BEGIN RIVATE KEY----- 	unencrypted PKCS#8 in a PEM envelope
-----BEGIN RSA RIVATE KEY----- 	encryptedd PKCS#8 in a PEM envelope

I agree with you that the PEM envelope may be encrypted only in the first case.


More information about the pycrypto mailing list