Can we have a private key cleared out for us so that we can re-create it?

  • Spertus
    Asked on September 18, 2015 at 1:42 PM
    How do I generate a NEW key? I understand the point about information loss.
  • Ben
    Replied on September 18, 2015 at 1:45 PM

    As mentioned on the previous thread Nicholas, I am raising this to our developers to see if it is possible to clear your current private and public key so that a new pair can be re-created for you.

    I can not make any promises, but as soon as there are any updates on this, we will let you know about it through this thread.

  • Spertus
    Replied on September 18, 2015 at 4:26 PM

    Thanks.

  • Ben
    Replied on September 18, 2015 at 5:32 PM

    You are welcome :)

  • Spertus
    Replied on September 21, 2015 at 1:19 PM

    Any luck yet?

  • Spertus
    Replied on September 21, 2015 at 1:47 PM

    In the interim, is there a way you (devs) can decrypt only the email addresses of submissions that were processed during the moment a form was encrypted? We need to contact those individuals and have them re-submit.

  • Ben
    Replied on September 21, 2015 at 3:06 PM

    I see that this has been assigned to our CTO (at this time) and marked as important, but other than that I can not give you any more details.

    Now in regards to your question, please do note that without the private key, no-one would be able to see the submitted data. If you pass the encrypted data with the public key to the Google to decrypt it, the notification about it being decrypted is not something that would come any time soon, even with all of their servers running on it.

    That is why it is very important to keep your private key secured :)

    As mentioned earlier, as soon as there is any news in regards to this, we will notify you of the same through this thread, but for now, my suggestion is to not use the encrypted forms, but plain forms over HTTPS (so no one can see the submitted data while the form is being submitted), even if it can be read by anyone with the access to your Submissions Panel.

  • Spertus
    Replied on September 21, 2015 at 3:12 PM

    Right, thanks. We're not using encrypted forms at the moment but need a way to recover the 3 encrypted submissions we do have to regain those submissions.

  • Ben
    Replied on September 21, 2015 at 5:01 PM

    but need a way to recover the 3 encrypted submissions we do have to regain those submissions.

    Unfortunately as mentioned above and on the other thread, without this key it is simply not possible, since the person that created the first encrypted form is the only one that has it (it is not even created on our servers - all happens in your own browser - even decryption of the data).

  • Nabitha
    Replied on September 21, 2015 at 6:30 PM

    I created encrypted forms. I had no idea about this private key. I have searched through my computer. There is no such file called jotform.key or even just jotform. What do I do?
  • Chriistian Jotform Support
    Replied on September 22, 2015 at 2:51 AM

    Hi Nabitha,

     

    I have moved your question to a separate thread so we can better assist you. You can check it here. We will attend to it as soon as possible.


    If you have any further questions, please feel free to contact us again by creating a new thread.
    Regards.

  • alp_deniz
    Replied on September 22, 2015 at 8:22 PM

    Hello,

    You can now upload or generate a new key by enabling encryption on your form again. Please note that it will make the old key obsolete.

    Kind regards