Bodo Moeller wrote:
>
> On Thu, May 27, 1999 at 10:25:34AM +1000, Ian Pollard wrote:
>
> > I have a proprietary client application and server that I have implemented
> > OpenSSL for secure comms. My own client app doesn't have to communicate
> > with anything other than my own application server. My server will be
> > likely situated outside the US, my client app may be deployed to inside the
> > US.
>
> So you likely don't want to use RSA. If you configure the library
> with no-rsa no-idea, what is left should be safe to use without having
> to worry too much about patents; but IANAL, etc.
You might also want to exclude RC5 and RC4 which RSA is claiming various
things over. I believe RC2 is OK now but some people omit it anyway.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
