Re: rsa encypt/decrypt

Sun, 5 Mar 2000 11:52:54 -0800 

Hi!

> As a mentioned, the algoritm is the following
> output = RSA( SHA-1 (input), d?, n). And now I'm in trouble.

I guess RSA_sign is the thing you're looking for. There _is_ some
documentation on the www.openssl.org and it should get you going. You
could also look at http://www.cc.columbia.edu/~ariel/ssleay/ which I used
before OpenSSL docs became available. It's obsolete, but not that obsolete
;)

> I write the pages in PHP3 and I do hate C-language, but .....
> I must have some simple functions for this kind of job..
> One is to have some small command-line tool, the other is
> to write add-in function for php. Although my hateness,
> I can do both.  I need only 4 functions: to read and write
> RSA keys from pem files and enc/dec my strings
> WITHOUT to be an expert in cryptography or even
> in terminology. I thought this would be possible, but
> now I'm not sure.......

Very good! In my not so humble opinion - if one writes crypto-software
then one must be aware of what one's doing. so you really should try to
catch up terminology and familiriaze you with some basic cryptosystems
like RSA for example. There are plenty of good websites on the topic and
the very best linksite is http://home.cyber.ee/helger/crypto/

> >     You might want to hire an information security consultant (but not me,
> > Estonia is too far from home ;).

Not for me ;)

> I hope not! I can use an md5 or TripleDes crypto functions not
> beeing an expert, why I need one for rsa ? It's just another algoritm,
> isn't it :-)

No it's not. The difference between security software and other software
is:

other software: you test it to see if something works. If it works on most
of the cases then you're happy.

crypto software: you need to be sure that something (an attack on the
system) doesn't work. So you must have deeper understanding in methods of
cryptology to have some idea about what you're actually doing.

        Sven

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to