Endpoint Encryption

 View Only

  • 1.  PGP Decryption error event 3: error -11476,exitPGP: exitcode = 32

    Posted May 20, 2015 08:56 AM

    Scenario - SAP Proxy to File with content conversion module & SAP PGP Encryption Module localejbs/PGPEncryption
     
    PGP parameters supplied in module :
    applyCompression = ZIP
    encryptionAlgo = DES
     
     5-19-2015 7-59-21 PM.png
    Encryption Key Details:
     
    Key Details: vendorkey-xyz
         Key ID: xxxxxxxxxx
           Type: RSA legacy (v3) public key
           Size: 2048
       Validity: Invalid
          Trust: Never
        Created: 2001-02-01
        Expires: Never
         Status: Active
         Cipher: IDEA (Absent)
           Hash: SHA-1 (Absent)
       Compress: Zip (Absent)
          Photo: No
      Revocable: No
          Token: No
      Keyserver: None
        Default: No
        Wrapper: No
    Prop Flags: Absent
    Ksrv Flags: Absent
    Feat Flags: Absent
      Notations: None
          Usage: Sign user IDs
          Usage: Sign messages
          Usage: Encrypt communications
          Usage: Encrypt storage
          Usage: PGP NetShare
          Usage: PGP WDE
          Usage: PGP ZIP
          Usage: PGP Messaging
     
     
    Issue : when vendor attempt to Decrypt the below error occurred
     
    # pgp +verbose=2 test.txt.pgp
    Pretty Good Privacy(tm) Version 6.5.2
    (c) 1999 Network Associates Inc.
    Uses the RSAREF(tm) Toolkit, which is copyright RSA Data Security, Inc.
    sjmsap123
    PGP Decryption error event 3: error -11476,exitPGP: exitcode = 32

     
     
    event 1: initial
    event 13: BeginLex
    event 8: Analyze
    File is encrypted.  event 9: Recipients
    Secret key is required to read it.
     
    Key for user ID: vendorkey-xyz
    2048-bit key, Key ID xxxxxxxxxx, created 2001/02/01
    event 6: Passphrase
    event 3: error -11476
    event 2: final
     
    0 memory frags found
    exitPGP: exitcode = 32
     
     
    Please advise on above Decrypt error .

     

    Thanks

    Ravi



  • 2.  RE: PGP Decryption error event 3: error -11476,exitPGP: exitcode = 32

    Posted May 20, 2015 11:48 AM

    What is in use here is amazingly out of date, and there is no way I can give you a concrete answer, but I might have a suggestion or two.

    For the encryption algorithm you have selected DES.  Even back in the 6.x series, DES was already obsolete, and was replaced by 3DES.  Since there is no DES built into the 6.5.2 version of PGP, which is what it looks like they are trying to decrypt with, the session key is invalid (pgp error -11476), causing it to fail and terminate with a decryption error (exit code 32).

    Try it again using 3DES, or one of the other ciphers available for PGP version 6.5.2 (other choices: CAST5 or IDEA).  Let me know if that works.



  • 3.  RE: PGP Decryption error event 3: error -11476,exitPGP: exitcode = 32

    Posted May 20, 2015 12:43 PM

    Thanks Mike.

    Vendor who is trying to decrpty the file is asked to use "DES" . 

    But looking at your comments it make more sense to use 3DES. Let me try and will post the update.

     

    Thanks

    Ravi



  • 4.  RE: PGP Decryption error event 3: error -11476,exitPGP: exitcode = 32

    Posted May 20, 2015 12:51 PM

    DES should be included in the default cryptographic module, even though it is not an option for encryption.  That is how we currently run the product, but with that old of a version, all bets are off.  The research I have done into it suggest that it doesn't have DES capability at all, so I hope that works for you.  Let me know the results.

    I also don't think it would be out of line for you to ask that they get a more modern product with a bigger/better crypto library.  The product they are using is from 1999, and there are bound to be some issues there.