我应该将公钥存储在哪里?
我的 Web 应用程序有一个持续运行的服务来将报告发送到 ftp 服务器,该文件需要使用公钥进行加密。因此我的问题是我应该在哪里存储公钥?我只有一个公钥,所以使用高级密钥库似乎有点矫枉过正?
我应该在服务器上手动创建一个文件夹并将其存储在其中吗?
My web application have a continuously running service to send a report to a ftp server, the file need to be encrypted by using a Public Key. Thus my question is where should I store the Public Key? I only have one Public Key so using an advanced Key Store seems to be overkill?
Should I just manually create a folder on the server and store it in there?
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(3)
公钥(或更可能是包含它的证书)的存储并不是重要的部分。重要的是私钥的位置。它应该位于存储中,理想情况下只能由 Web 应用程序访问。
Storage of the public key (or more likely a certificate containing it) isn't the part that matters. What matters is the location of the private key. That should be located in storage which is ideally only accessible by the web application.
如果此密钥是公开的,您可以将其存储在任何地方。文件夹没问题。
If this key is public you can store it anywhere. Folder is ok.
根据定义,任何人都可以读取公钥。因此,让每个人都可以使用它并不是一个安全问题。
A public key can be read by anybody, by definition. Therefore it is not a security issue to have it available for everybody.