Akwai imani cewa symmetric crypto ya fi rauni fiye da mabuɗin jama'a. Ta amfani da tsarin daidaitacce, mai aikawa da mai karɓa dole ne a baya sadarwa mabuɗin da aka yi amfani da shi don ayyukan ɓoyewa da kuma ɓatar da saƙonni. Yayin da wannan baya tasiri, kwata-kwata, karfin aikin boye-boye.
Watau, bangarorin biyu masu sadarwa dole su yarda da juna a gaba game da mabuɗin don amfaniDa zarar bangarorin biyu sun sami damar shiga wannan mabuɗin, mai aikawa ya ɓoye saƙo ta amfani da madannin, sai mai aikawa ya aika zuwa ga wanda aka karɓa, wanda ya warware ta ta hanyar amfani da kalmar sirri da duk suka kafa a baya. Ofarfin daidaituwa ya ta'allaka ne da ƙarfin kalmar sirri, ba algorithm ba. Sabili da haka bai kamata ya zama mai taimako ga mai kawo hari don sanin algorithm da ake amfani dashi ba. Mara aure idan maharin ya sami mabuɗin, zai taimaka wajen sanin algorithm. Abubuwan lissafi na ɓoyewa da aka yi amfani dasu a cikin GnuPG suna da waɗannan kaddarorin.
Wannan yana nuna cewa kawai girmamawa wannan ya kasance tsakanin hanyoyin daidaitawa da daidaito (wanda ake kira maɓallin jama'a) yana cikin sansanin soja na «tashar rarrabawa» na makullin.
Ɓoye wa kanmu
Lokacin da aka samar da maɓallan biyu - na jama'a da masu zaman kansu - buƙatar hakan ta taso kiyaye maɓallin sirri don haka koda a cikin mafi munin yanayi za mu iya sake yin hakan, saboda rashin sa a zahiri yana nufin rashin amfani da maɓallin, har ma da yiwuwar cewa wani zai iya sauƙi, a cikin mafi kyawun yanayin:
- Je zuwa sabar maɓalli don karantawa da kwafin maɓallin mu na jama'a.
- Tare da mabuɗinmu na sirri, samar da takardar shaidar sakewa na mabuɗan.
- Buga sakewa a madadinmu
- Kwata-kwata ya warware ainihinmu
Don haka bukata ta taso mana ɓoye mana. Wato, muna, mun zama mai aikawa da karba saboda niyyarmu ita ce mu tabbatar da «jama'a.key». Wannan shine inda ɓoye asymmetric ya shigo cikin wasa.
Boye maɓallin jama'a
$ gpg -o public.key.gpg --symmetric --cipher-algo AES256 public.key
Me muka yi kawai? Encrypt ta amfani da gpg tare da «–symmetric» mai gyara fayil ɗin jama'a.key tare da AES256 algorithm samun kamar fitarwa fayil «jama'a.key.gpg». Wato, an ɓoye fayil ɗin tare da isasshen ƙarfi. Ana iya yanke shi in, kuma idan, mai yanke hukunci yana da mabuɗin.
Mayar da ɓoyayyen maɓallin
gpg -o public.key -d public.key.gpg
Snowden: v