two Client Application that initially exchange and validate each other’s public keys, which have been issued by a Certification Authority which they both trust. They then transmit messages to each other, using the shared key, private key, hashing and compression functions, in the same manner which PGP would do. I used Bouncy Castle to implement in java
text messages are converted to file and then encrypted and decrypted for now.
Files Structure The assignment is made of two independent parts that is ClientA(Client) and ClientB(server for starting communication).
The source code can be found in the ClientA/src folder and ClientB/src folder. The two folders have five common files:
- PGPEncryption.java : This file contains the PGP Encryption implementation. Found in both ClientA and ClientB src Folders.
- PGPDecryption.java : This file contains the PGP Decryption implementation. Found in both ClientA and ClientB src Folders.
- PGPKeys.java : This file contains the PGP keys management implementation. Found in both ClientA and ClientB src Folders.
- Settings.java : This file contains the IP Address and port number configuration of both client and server. Found in both ClientA and ClientB src Folders.
- ClientA.java/ClientB.java: ClientA.java contains graphical user interface implementation of the client and ClientB.java contains graphical user interface implementation of the server.
ClientB has another file: "ServerThread.java" which contains code for connecting server to the client. The thread class is extend to allow execution of exchanging of certificates prompted before formal communication could start.
Building, running a sample, cleaning To run the code ensure the following are done: The project was developed using Netbeans IDE but it can be tested and run using other ways described below.
- Ensure that the jar files of the bouncy castle libraries are installed. The project folder has the jar files already included in the Lib folder.
- If you using an IDE to run the project or test it; ensure you build the project before running it. We recommend using linux command line to run the makefile which is used to automate the building processes. You can either way open it in an IDE and run it from the IDE such as Intellij, Eclipse or Netbeans.
running the code
- Invoke the building by running "make" on the command line of linux. It is a must to have installed 'ant' so to invoke the building process. 'ant' is a apache building command for java projects. If you don't have it installed, run sudo apt-install ant in your machine
Testing procedure
- Open your command line/prompt into two windows.
- One window of the command prompt Run the "make server" command to invoke the automation of the building process of the server part of the project.
- Second window of the command prompt Run the "make client" command to invoke the automation of the building process of the client part of the project.
- Click the "Connect to ClientA" button on the ClientB graphical user interface.
- Click the "Connect to ClientB" button on the ClientA graphical user interface. The exchange of X.509 certificates will start immediately and verification will be completed Do not interchange step 3 and 4 because the server need to start communication first before the client".
- Type a message on the 'Message textbox' on ClientA graphical user interface and click "send" button. You will immediately see a pgp encrypted message on the ClientB encrypted message text-box GUI"
- Click the "Decrypt" button on ClientB
- Click okay on message box of signature verified
- Click okay on message box of message integrity passed immediately the message that was sent by ClientA will appear