This is a discussion on Re: CMS usage with OpenSSl - Openssl ; On Tue, Apr 01, 2008, shankar ks wrote: > Hi all/ > > I am shiva, working on security issues using Openssl Api's. Our requirement > is we need to Sign the file, compress the file , encrypt the file ...
On Tue, Apr 01, 2008, shankar ks wrote:
> Hi all/
> I am shiva, working on security issues using Openssl Api's. Our requirement
> is we need to Sign the file, compress the file , encrypt the file as a
> CMS(crypto graphic message syntax) package.
> I am able to do the signing, compression, encryption using the OpenSSl Api's
> in C language. But our requirement is we need to envelope the signed ,
> compressed and encrypted files as a CMS package.
> Basically we are using
> RSA_public_encrypt for signing and encryption of the data.
> But we did not understand how to implement those as a CMS package. I am
> thinking Implementing the above functions it self implementation of CMS, but
> I am not sure about it, can you please conform whether I am correct or not ?
> if I am wrong, is there any functions that I need to implement for the CMS.
> And one more doubt is does using of openssl Api's will implement the CMS or
> not ?
> If all my understating is wrong please let me know what are the
> implementations for the CMS using the openssl.
The functions above have nothing to do with CMS. They just handle raw data.
OpenSSL has supported PKCS#7 for some time but not CMS.
CMS support is currently under development in HEAD and the API is not currently
documented other than the "cms" utility.
Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage
OpenSSL project core developer and freelance consultant.
OpenSSL Project http://www.openssl.org
User Support Mailing List firstname.lastname@example.org
Automated List Manager email@example.com