Generating Key Pair
Billing generates 2048 bit RSA keys. Using Billing control panel interface, it is possible to generate key pairs, and then copy the private key and move it to a secure storage.
Private key generation is a two-step wizard:
Step 1. Generate New Key. Specify private key owner. Enter private key password.
Step 2. Generated Key Pair. Save private key.
To generate a key pair:
- Open System > Settings > Encryption Keys. Information about encryption keys is displayed.
- Click Generate New Key. Key pair generation wizard starts. Fill the form:
- Click
next to the User field. From the window that opens, choose a user that will share the responsibility of storing the private key. Specifying another user is optional, but highly recommended. You can specify the user you are currently logged in; in this case you will be shown the generated private key and it will be your responsibility to save the private key. If you specify another user, the private key will be hidden and only to the specified user when he/she will log in to Billing; in this case, this user must retrieve private key and save it.
- Enter private key password into the Password field. Private key can be later uploaded without password. However, to start using the private key for data decryption, password is required.
- Re-enter private key password into the Confirm Password field.
- Click
-
To generate keys with specified private key owner and password, click Generate. To cancel keys generation, click Cancel. If you have generated private key for another user, private key is hidden. If you have generated private key for user you are currently logged in, then view the generated key pair:
Warning: Save private key. Do not click Ok till you save the private key. Private key text is shown in the Private Key field. To save private key to a file manually, copy the key text including starting with
======Private Key=======
and ending======End Private Key===
, save it to a file. To save private key to your local computer, scroll the screen and click Save to Local Disk. The default file name is as follows:PrivateKey_ID.bmk
, where ID is replaced with key pair ID shown in the KeyID field at Encryption Keys screen. - When private key is saved, click OK. Encryption Keys screen is shown. Public key is in Not Confirmed status. Load private key to enable encryption.