Table of Contents
A simple FileHandler which supports working with PGP encrypted and/or signed text data.
It provides actions to:
Create a signature over text data with a known private key.
Verify a PGP signature by a known public key over text data.
Encrypt text data to one or more known public key(s).
Decrypt text data that was encrypted to a known private key.
To prevent the possibility of accidentially saving sensitive information back to the loaded file in clear, the editor disables saving in case data has been decrypted after loading it, but not encrypted again afterwards.
As this FileHandler supports modification and saving of the loaded data, it is an editor by nature.
Passphrases are required when a private key needs to be accessed from the configured keystore. Such an access is only necessary for security relevant operations such as signing and decryption. Thus passphrases will only be queried for when performing such an operation.
To ease general usage, it is possible to cache the passphrase during a customizable amount of time. Is there a need to access the same private key again within that time frame, the cached passphrase can be reused and the user won't need to re-enter it again.
On the other hand it is also possible to explicitly clear the cached passphrase from memory. This prevents it from being obtained by other software which might be scanning the memory for such sensitive information.