PGP and RSA protocols are the two widely used protocols in a number of servers and email applications for security with public/private key pair.
What is the difference between them? What other popular protocols are available?
Asked
Active
Viewed 1.8k times
1 Answers
21
Using a car analogy:
- PGP is a car
- OpenPGP is the design for the PGP car
- GnuPG is another car using the same design
- RSA is a diesel engine, and other engines are available
- SSH isn't a car at all. But it uses engines.
RSA is a public-key cryptosystem. That is, it is an algorithm for encrypting, decrypting and signing data using a set of two keys (the public key and private key).
PGP and GnuPG both offer the use of RSA for general purpose encryption and signing of data. They also offer other options, like Elgamal and DSA.
SSH uses RSA for authentication, not encryption. The server has your public key, and you have the private key, and SSH uses this fact to make sure you are, well, you. SSH also supports other keypairs, for example, ECDSA.
Further reading on the Information Security Stack Exchange:
And you should probably read What is the difference between SSL vs SSH? Which is more secure? as well.
