Title
The Partnership Manager wants to receive the weekly file related to updated metadata and has to encrypt the file when sending.
Context
What was the problem at hand?
Our system has a lot of information on the customer, so When we send the file out, there has more at-risk security like tampering or unauthorized access.
What other choices were considered?
There are several algorithms:
Rivest Shamir Adelman(RSA)
Digital Signature Standard(DSA)
Elliptic curve cryptography(ECC)
Reason
Why was the ECC chosen over everything else?
First of all, we can see this statistics table
This algorithm has had FIPS-Certified (Federal Information Processing Standard)
We can able to save the memory of the key when using ECC if we use ECC for the AES-256 session, then a 512-bit ECC key is required while a 15360-bit RSA key is required.
Package reference https://www.nuget.org/packages/Ecc
Advantage
Internet-based applications, for example, online Banking or business where a large volume of online transactions or web server requests is on demand.
Constraint devices like mobile devices have low computational power and low memory storage.
Cryptographic tokens are portable, small, and lightweight and they have the low processing power
Sequence diagram
