There are three components to a Smartkey: the Session key, the Asset key, and the Access Control List (ACL).
- The Session Key is the symmetric key that actually gets used to encrypt the data. It is an AES256 key, meaning that it contains 32-bytes of long, random, unique information. The PK Protect Application generates this key and uses it to encrypt data.
- The Asset Key is also an AES256 key generated by the PK Protect Application. It is used to encrypt all Session Keys related to files controlled by the Smartkey.
- The Access Control List (ACL) is a list of one or more e-mail addresses that should be allowed to use the Smartkey”.