xenial (1) sks-ecc.1.gz

Provided by: sks-ecc_0.93-6_amd64 bug

NAME

       sks-ecc - Provides public key encryption/authentication

SYNOPSIS

       sks-ecc command [args]

DESCRIPTION

       sks-ecc  is  a  public key application for encryption/authentication, based on Elliptic Curve Cryptografy
       (ECC). Its minimalist design points to simple, light,  fast,  easy  to  use  and  multiplatform  product,
       unencumbered  by  patents  that  is indeed distributed under GPL. All these features are given along with
       high quality cryptografy.

       Its cryptografic elements are:

       •  Public key module: elliptic curve over GF (2^191)

       •  Simmetric key module: AES 192-bits key, with CTR mode

       •  Hash (for signatures, HMAC and passwords): TIGER (192 bits)

       •  PRNG module: /dev/urandom. User can provide her own entropy source

OPTIONS

       -l     Shows license terms.

       Commands in interactive mode

       -c|-C pfile cfile
              Ciphers conventionally pfile and outputs cfile. Uppercase precompress pfile. Password is asked.

       -e|-E pfile cfile [keyid] [...]
              Ciphers pfile with public key(s) identified by keyid(s). Output  is  driven  to  cfile.  Uppercase
              precompress pfile.

       -d cfile pfile
              Deciphers cfile onto pfile, whatever the ciphering mode was. Password is asked.

       -s pfile dsign
              Signs pfile and outputs detached signature to dsign. Password is asked.

       -S pfile
              Signs printable pfile and outputs through stdout the clearsigned text. Password is asked.

       -v pfile dsign
              Verifies  that  dsign  is  a  valid  signature  of  pfile. A verify report is output to stderr. If
              verification is OK, date and key id. of signer are given.

       -V pfile
              Verifies clearsigned texts on pfile and outputs through stdout the original texts.  Verify  report
              are output to stderr. Wheather a good verification is found, date and key id. of signer are given.

       -r pfile [...]
              Outputs the TIGER-hash of given pfile(s), in a 'md5sum' fashion.

       Commands in filter mode. Text filter is introduced by -f. Binary filter is introduced by -b

       -fc|-fC|-bc|-bC "passw"
              Ciphers  conventionally  stdin  with  password  string  passw,  and  gives  output through stdout.
              Uppercase precompress input.

       -fe|-fE|-be|-bE [keyid] [...]
              Ciphers stdin with public(s) key(s) identified by keyid(s). Output is driven to stdout.  Uppercase
              precompress input.

       -fd|-bd "passw"
              Deciphers stdin onto stdout by means of password string passw, whatever the ciphering mode was.

       -fS "passw"
              Signs stdin with password string passw, and outputs through stdout the clearsigned text.

       -fV    Verifies  clearsigned texts on stdin and outputs through stdout the original texts. Verify reports
              are output to stderr. Wheather a good verification is found, date and key id. of signer are given.

       Commands to manage keyring.

       -kg    Public/private key generation. It asks for a descriptive identifier and then asks for a  password.
              Both  can  be  input  in  a  pipe through stdin: the first line is taken as the identifier and the
              second as the password. The public key is stored in keyring and is output to stdout.  The  private
              key is not stored.

       -ki keyfile
              Imports all keys in keyfile. Alternatively, keyfile can be piped through stdin.

       -kd numid
              Deletes key identified by hexadecimal id. numid.

       -kl [keyid] [...]
              Lists the hexadecimal and description ids. of keys matched by keyid(s).

       -kf [keyid] [...]
              List  the  fingerprint  of  keys  matched  by keyid(s). Fingerprint is given in base 36, with ICAO
              alfabet.

       -ke [keyid] [...]
              Exports the keys matched by keyid(s) through stdout.

HINTS

       All files are parsed in a streamish almost unbuffered mode. This means that in  interactive  mode,  pfile
       and cfile must not coincide. Unpredictible results may occur otherwise.

       All  keys  that matches the patterns given by keyid parameters are selected. keyid(s) can match partially
       hexadecimal and/or description identifiers. If no keyid is given, all keys will be selected. Exception is
       -kd  command, that only admits one hexadecimal pattern that completely matches the target key hexadecimal
       id.

AUTHOR

       Written by Manuel Pancorbo Castro <mpancorbo@gmail.com>.

BUGS

       Report bugs to <mpancorbo@gmail.com>.

       Copyright © 2004-2006 M. Pancorbo  -  All  Rights  Reserved  This  program  is  free  software;  you  can
       redistribute  it  and/or  modify it under the terms of the GNU General Public License as published by the
       Free Software Foundation, Inc.

SEE ALSO

       Complete manual and design notes (in spanish):

        http://sks.merseine.nu