Message Enveloping

Combining digital signatures and encryption results in what is called message enveloping. An enveloped message is first signed using the sender's private signing key, and then the signed message is encrypted using the recipient's public key. When the recipient receives the message, the message is decrypted using the recipient's private key, and then verifies the message signature using the sender's public key, as shown in Figure 1.7.

Figure 1.7. Combining digital signatures and encryption as message enveloping.

Message enveloping accomplishes two goals. When the inner message is signed by the sender, the contents of the message ...

Get Developing Secure Applications with Visual Basic now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.