Obtaining public-private key pairs for use with the Confidencial SDK
This page describes how to obtain public-private key pairs, which allow you to execute Confidencial decryption actions using the Software Development Kit (SDK). To decrypt a file using the SDK, at least one public-private key pair is required. The specific key pairs that are capable of decrypting a file depend on the policy used to encrypt the file. Encryption policy details, including which keys can be used to decrypt a file are contained within the metadata of a protected file.
- Open the Confidencial Desktop App or go to my.confidencial.io and log in if you haven’t done so already
- Click Key Management under the Advanced section of the left sidebar menu
![notion image](https://www.notion.so/image/https%3A%2F%2Fs3-us-west-2.amazonaws.com%2Fsecure.notion-static.com%2Fdd826e83-f91a-48c9-84ea-17b985691bc0%2FUntitled.png?table=block&id=3a757450-11c3-4364-8965-ffa9349855ac&space_id=171bfddf-485b-4a4a-a69a-ab8c29df4f58)
- Your keys are listed in the main panel. For each key pair that you wish to use with the SDK:
- Copy the public key hash and store it in a location that you can access from your code
- Click View Private Key and copy the private key, as it is presented in PEM format, and store it in a location that you can access from your code
![notion image](https://www.notion.so/image/https%3A%2F%2Fs3-us-west-2.amazonaws.com%2Fsecure.notion-static.com%2Fe7b71977-a55b-4ff5-bbd0-aa43bad2a599%2FUntitled.png?table=block&id=952c68dc-6574-4042-b3a6-bc4c858178ae&space_id=171bfddf-485b-4a4a-a69a-ab8c29df4f58)
Private keys permit the decryption of files. They should be stored in a secure location!