Hello,
I have some questions regarding an enveloped data structure, created by
:
openssl smime -encrypt -aes128 -binary -outform PEM -in mydoc.doc -out
envdata.pem certdest1.pem certdest2.pem
This means that I want to cipher mydoc.doc for recipients dest1 and
dest2, using an AES 128-CBC key.
- How can I create the same PKCS7 but not including the ciphered data,
i.e. encryptedContent not being included :
EncryptedContentInfo ::= SEQUENCE {
contentType ContentType,
contentEncryptionAlgorithm ContentEncryptionAlgorithmIdentifier,
encryptedContent [0] IMPLICIT EncryptedContent OPTIONAL }
EncryptedContent ::= OCTET STRING
I haven't seen any option in the command line version.
How can I "redirect" the ciphered version of mydoc.doc to some binary
file (mydoc.doc.cry) I can send along with the pkcs7 which contains the
ciphered AES keys and recipient identifiers ? I need to separate
ciphered data and ciphered AES keys.
- Once the recipient has deciphered AES keys, he would also need the
initialisation vector to decipher the mydoc.doc.cry document using
openssl rsautl command. How could he have this information ?
Or how could he use openssl smime -decrypt command with encryptedContent
being in another file ?
Thanks for any pointer.
If this can be done using some C++ programming, how could I do this
using Cygwin under Windows XP ? Or maybe .NET framework, but I am not
sure this would be OK...
I guess cygwin would be better.
Have a nice day.
Barbara Post
_____________________________________________________________________
Envie de discuter en "live" avec vos amis ? Télécharger MSN Messenger
http://www.ifrance.com/_reloc/m la 1ère messagerie instantanée de France
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
