Name: Anonymous 2014-11-25 5:16
Lately I have been thinking on how to properly, and globally, sign files and code I make, as to watermark that I did X thing.
Lately I have been using GPG on RSA 2048bit to sign a .7z on AES with a long password that contains an validation file, as my proof of work, that I cypher in texts and files, even as my submission name at times.
Example: Project credits (movie or game)
Name: $random_cypher_I_made_for_company
Leads to pastebin or some place with the GPG, and they can extract the .7z with my public key. We can exchange our signatures for hashes, and be done with it. But if they require additional verification, the encrypt the .7zip with their own key, I decrypt, open the file with my knowledge based password, encrypt the validation file, and send it back as proof, that I am, without a doubt, the person in question.
Long ramble short: What do you use?
What is the standard?
Am I doing this correctly?
Lately I have been using GPG on RSA 2048bit to sign a .7z on AES with a long password that contains an validation file, as my proof of work, that I cypher in texts and files, even as my submission name at times.
Example: Project credits (movie or game)
Name: $random_cypher_I_made_for_company
Leads to pastebin or some place with the GPG, and they can extract the .7z with my public key. We can exchange our signatures for hashes, and be done with it. But if they require additional verification, the encrypt the .7zip with their own key, I decrypt, open the file with my knowledge based password, encrypt the validation file, and send it back as proof, that I am, without a doubt, the person in question.
Long ramble short: What do you use?
What is the standard?
Am I doing this correctly?