Dear Chris, authentication methods and protocols were researched for years.
The method described is an easy one and probably could be implemented fast. However, one better start from requirements before any coding. For example: server is not authenticated here so man-in-the-middle is allowed by design regards, Vadim On Mon, Feb 16, 2004 at 06:48:26PM +1100, Chris Nolan wrote: > Hi all, > > I'm working on building a client-server setup for an application > involving Smartcards. I have a library for Smartcard access on the > Windows side and was hoping to do the following for authentication: > > 1. Using a certificate that contains the client's public encryption key, > send a PKCS7 message to the client. > 2. Get the client to send me a hash of the decrypted content. > > The problem is, wrapping my head around what to call and in what order > on the server side. The man pages are good, but don't really give me > much insight as to the structure of the API. > > Can anyone point me in the direction of some examples on how to do this? > The reason I want to use PKCS7 is because the library on the client side > is already setup to do this with a single C function call. > > Regards, > > Chris > > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
