On Fri, 11 Mar 2005 12:04:59 -0500, Eric Burger said:
So, the question is, are there implementations of PGP where one can:
1. Extract the encrypted session key from the PGP-encrypted object
2. An API for handing over the encrypted session key and the client key,
returning the clear session key (this would run on the remote client).
3. An API that takes the clear session key and the PGP-encrypted object and
returns the cleartext object.
GnuPG provides this for many years.
SESSION_KEY <algo>:<hexdigits>
The session key used to decrypt the message. This message will
only be emitted when the special option --show-session-key
is used. The format is suitable to be passed to the option
--override-session-key
Use it together with --status-fd n.
Shalom-Salam,
Werner