Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,293 questions
A community member has associated this post with a similar question:
how to import only the public side of an RSA key
Only moderators can edit this content.
How to import only the public side of an RSA key
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 93%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Moyer, Todd
80
Reputation points
We need to export data via Azure Blobs that should be encrypted with an RSA public key provided by the recipent. However, Azure does not appear to provide good support for just the public side of an RSA key.
The only way I can find to import just the public side is as a Key Vault Secret. Unfortunately, secrets don't seem to support preferred encryption operations:
- Blob/Container Encryption Scopes
- Key Wrapping
Much of the security provided by RSA keys is derived from the data producer not having the private side of the key. Seems like essential functionality that Azure should support.
So... is there a way to import just the public side of an RSA key into a Key Vault Key?
If not, is there a way to do Encryption Scopes or Key Wrapping with a secret?
{count} votes
-
James Hamil 24,841 Reputation points Microsoft Employee2024-07-18T16:00:53.01+00:00 This is a duplicate of https://learn.microsoft.com/en-us/answers/questions/1823751/how-to-import-only-the-public-side-of-an-rsa-key , closing this and merging.