Amit sahai wrote:
>
> Hi all ,
> Just wondering how to add a cipher like "ECC" ( Elliptic Curve
> Cryptosystem )
> is added to SSL layer's allowed list of cryptographic algorithms . This
> "Cipher " is very useful for smart cards which require less computation
> .
> What is the general procedure of adding an algorithm ?
>
Currently adding additionaly symmetric ciphers is relatively simple.
That doesn't help you though :-(
Adding asymmetric ciphers currently is painful and requires some fairly
major OpenSSL core modifications, including manually adding stuff to the
PKCS#8 and certificate key code, the signing code and there isn't even
an EVP API for key agreement if you want EC-DH.
I'd like to see EC (and X9.42 DH) in OpenSSL myself. If anyone donates
codes to the EC primitives I'll see if I can do the rest (yucky ASN1 and
adding a "pluggable" asymmetric API).
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
