Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How works Public-key cryptography on Github?

Tags:

git

github

cryptography

public-key

In Public-key cryptography is generated a pair of key, one private and one public, the public I put in the Github.

The Private-key decrypts the data and the Public-key encrypts the data. This means when I sent data to github this data is not encrypted because only Private-key decrypts the data?

Update:

Thanks guys, i'm understanding now.

I'm was thinking my data is encypted with that way in github when I send push/pulls. This case is used for login/verification/signing. That's all completely different from the encrypted transmission stream that the SSH connection sets up to send my datas.

Thanks everyone for your responses...

like image 846
Acaz Souza Avatar asked May 05 '11 14:05

Acaz Souza

People also ask

How does public key cryptography works?

Public key cryptography enables the following: Encryption and decryption, which allow two communicating parties to disguise data that they send to each other. The sender encrypts, or scrambles, the data before sending it. The receiver decrypts, or unscrambles, the data after receiving it.

Does GitHub use encryption?

GitHub uses a libsodium sealed box to help ensure that secrets are encrypted before they reach GitHub and remain encrypted until you use them in a workflow. For secrets stored at the organization-level, you can use access policies to control which repositories can use organization secrets.

How public key cryptography is used for authentication?

The public key authentication protocol uses two keys per node, a public key for encryption and a private key for decryption. Everybody has access to the public key of a node, while the private key is secret. During authentication, random numbers are generated and exchanged, similar to the shared secret key protocol.

How are public keys distributed to clients?

In public key cryptography, the key distribution of public keys is done through public key servers. When a person creates a key-pair, they keep one key private and the other, known as the public-key, is uploaded to a server where it can be accessed by anyone to send the user a private, encrypted, message.

1 Answers

Not wrong at all, but wrong. (a) The private key decrypts the data encrypted by the public key and (b) the public key decrypts the data encrypted by the private key.

(a): Everybody can encrypt something, but only the owner of the private key can decrypt it.

(b): The owner "encrypt" something with his private key and everybody can decrypt it, what ensures, the it were really the owner, that encrypts the data and not somebody else.

git(hub) makes use of the second scenario: If you push something, it its signed with your private key. The receiver now validates the signature againts the public key it knows from you. If its match, everything is fine.

Update: A (maybe too) simplified description on what happens (when using github with ssh)

  • Github sends you something random, that is encrypted with his _private_ key (Maybe its not that random, I dont know, but doesnt matter here)
  • You receive it and decrypt it with his _public_ key. If this is possible, you are sure, that you are really talking to the official github server
  • Then you send the same random stuff encrypted with your _private_ key to the github-server
  • He tries to encrypt it with your _public_ key. If this is possible and its the random stuff he has sent you before, he knows for sure, that you are you.
  • Then you send you stuff encrypted with his _public_ key. Now only the github server can decrypt. Also he will answer with messages/data encrypted with your _public_ key, because only you can decrypt it.

Even if its not completely correct, it should describe the idea.

like image 52
KingCrunch Avatar answered Oct 17 '22 08:10

KingCrunch
Sign in to Comment

Related questions

git reset --hard HEAD vs git checkout <file>
Git is not recognized in Windows gitlab ci
Jenkins Pipeline throwing java.io.NotSerializableException: org.jenkinsci.plugins.workflow.job.WorkflowRun even with @NonCPS
Detached HEAD after checking out a branch; how to `push`? [duplicate]
Export list of all commit details in VSTS / Azure DevOps into file?
gitlab-ce 12.X : how do I find the hashed storage path of a repository on the server?
Is there a way to git stash specific lines of a file?
git completion in zsh: __git_func_wrap:3: : not found
Using git as a centralized version server
Local commits pushing to a central server
How can I wipe out my local branch in GIT?
Why is .gitignore not including a file prefixed by a !
I accidentally created a git local branch called --track, how can I delete it?
Version Control soft that will keep ALL files and their metadata from POSIX FS (ext3/ext4)
How to remove a branch named "--orphan"
Compile git for 32-bit linux on shared hosting
Can you get a word-diff with `git log`?
Github and Fogbugz
Get magic number from git packfile index in Haskell
EGit push operation giving error: "Error occurred during unpacking the remote end"

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!