Why not encrypt the file using PKCS#7 enveloped or signed and enveloped data. 3DES-CBC or AES for date encryption, key encryption using intended recipient public key, authentication using RSA singer public key?
If you need non-expanding data encryption using symmetric cipher, look at EAS in CTR mode, but this (of course) won't give you integrity, nor does this solve the key storage problem. Dave -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of David Gianndrea Sent: 18 October 2005 16:10 To: openssl-users@openssl.org Subject: Re: ECB, CBC, CFB, OFB, and when and where you would use them. Ok that is good info. What about just doing file level encryption. As an example you have a disk with a bunch of files, and it is only those files you would want encrypted, and the issue is more a confidentiality is required / media loss issue then a tamper issue? We are looking to use AES-256 for this. David Gianndrea Senior Network Engineer Comsquared Systems, Inc. Email: [EMAIL PROTECTED] Web: www.comsquared.com ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
