Reputation: 348
How to encrypt large file with RSA?
Code https://play.golang.org/p/CUEqjsJq5c
Error:
panic: crypto/rsa: message too long for RSA public key size
goroutine 1 [running]:
panic(0x4a6d80, 0xc420010420)
/usr/local/go/src/runtime/panic.go:500 +0x1a1
main.main()
/tmp/sample.go:28 +0xfa
File size 811 byte (for test encrypt self source file). I want encrypt some bigger files, 1..500 mb. Can I do it with RSA or need use some other methods?
Upvotes: 9
Views: 18533
Answers (2)
Reputation: 3141
If you don't want to chunk the file, an approach is Hybrid Encryption:
- Creating a random symmetric key
Ron the air, - Encrypting the large file with the symmetric key
Rto createEF=Sym(F, R), - Encrypting the symmetric key
Rwith an asymmetric RSA public key to createER=ASym(PublicKey, R), - Sending the encrypted file
EFalongsideER.
Encryption:
+---------------------+ +--------------------+
| | | |
| generate random key | | the large file |
| (R) | | (F) |
| | | |
+--------+--------+---+ +----------+---------+
| | |
| +------------------+ |
| | |
v v v
+--------+------------+ +--------+--+------------+
| | | |
| encrypt (R) with | | encrypt (F) |
| your RSA public key | | with symmetric key (R) |
| | | |
| ASym(PublicKey, R) | | EF = Sym(F, R) |
| | | |
+----------+----------+ +------------+-----------+
| |
+------------+ +--------------+
| |
v v
+--------------+-+---------------+
| |
| send these files to the peer |
| |
| ASym(PublicKey, R) + EF |
| |
+--------------------------------+
Decryption:
+----------------+ +--------------------+
| | | |
| EF = Sym(F, R) | | ASym(PublicKey, R) |
| | | |
+-----+----------+ +---------+----------+
| |
| |
| v
| +-------------------------+-----------------+
| | |
| | restore key (R) |
| | |
| | R <= ASym(PrivateKey, ASym(PublicKey, R)) |
| | |
| +---------------------+---------------------+
| |
v v
+---+-------------------------+---+
| |
| restore the file (F) |
| |
| F <= Sym(Sym(F, R), R) |
| |
+---------------------------------+
Upvotes: 19
Reputation: 112857
RSA can only encrypt data smaller than (or equal to) the key length.
The answer is to encrypt the data with a symmetric algorithm such as AES which is designed to encrypt small and large data.
If an RSA public/private key pair are required encrypt the symmetric (AES) key with RSA. This is referred to as hybrid encryption and in essence is how HTTPS encrypts data.
But it is may not necessary to RSA encrypt the symmetric key unless a public/private key pair are required. In the general case one just uses symmetric (AES) and that key. What is the use case for a public/private key pair?
Upvotes: 19
Related Questions
- How to encrypt a large file in openssl using public key
- Encrypting/Decrypting large files (.NET)
- Encrypt text file using RSA public key
- encrypting and decryption large file using rsa in java
- How do you encrypt large files / byte streams in Go?
- Python Crypto, RSA Public/Private key, with large file
- Decrypting Large files with RSA in pycrypto?
- Encrypting large files using a public key
- How to encrypt/decrypt larger file using RSA/AES
- How to encrypt large data in C++ using RSA encryption