RE: Crypto API / OpenSSL Interoperability

Wed, 02 May 2001 09:59:45 -0700 


        My guess is that you have a big-endian/little-endian 
problem. When I wanted to get CAPI to interoperate with the
encryption functions provided by RSA's Crypto-C toolkit I had
to byteswap the key values before the could be imported into
the other API. 

> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, May 02, 2001 12:57 PM
> To: [EMAIL PROTECTED]
> Subject: Crypto API / OpenSSL Interoperability
> 
> 
> I have been able to successfully implement the following 
> sequence of events
> when:
> 
> a) Both the Client and the Server are using the MS Crypto API.
> b) Both the Client and the Server are using OpenSLL.
> 
> On the Client:
> 
> 1) Generate a Public/Private Key Pair.
> 2) Export the Public Key.
> 3) Transmit the Public Key to the Server.
> 
> On the Server:
> 
> 1) Import the Public Key
> 2) Generate a Session Key for Triple DES Encryption.
> 3) Export the Session Key using the Public Key for Session 
> Key Encryption.
> 4) Transmit the Encrypted Session Key to the Client.
> 
> On the Client:
> 
> 1) Import the Encrypted Session Key using the Private Key for 
> Session Key
> Decryption.
> 
> Now that both sides have the Session Key, begin using it for 
> Triple DES
> message encryption/decryption.
> 
> The problem: I have not been able to process with the MS 
> Crypto API on the
> Client and OpenSSL on the Server.
> 
> I am accepting a Crypto API Public Key BLOB in the OpenSSL 
> Server Code and
> trying to generate (on the Server) a Crypto API Simple Key 
> BLOB (containing
> the Session Key) for the Client to import the encrypted Session Key.
> 
> Has anyone been able to get something like this to work?
> 
> ______________________________________________________________________
> OpenSSL Project                                 http://www.openssl.org
> User Support Mailing List                    [EMAIL PROTECTED]
> Automated List Manager                           [EMAIL PROTECTED]
> 
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to