-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello Usman,
Usman Riaz schrieb: > Thanks for the reply Jean-Claude, appreciated! Actually the whole senario is > like this. I have a software that I am selling to the customers. I want to > encrypt the information (license info) with my private key, and the software > will contain (embedded/hardcoded) public key (the way I would like to do) and > with that key the software will be able to decrypt the lincese information. I > dont want to use symetric encoding/decoding, then its too easy to findout the > key and generate a new license using that key even without hex editing. So > that > was the reason looking into PKI. I'd higly appreciate if anyone could comment > if > there is a better way to do what I am trying to achieve. I think you don't want to encrypt your license information, but you want to sign it. Signing is the operation that protects your data against manipulation. Encryption is the operation that protects your data against unauthorized reading. There is no need to protect the license info against the customer: he should know which entity may use it on which systems... But you want to protect it against unauthorized manipulation (including forged licenses). Bye Goetz - -- DMCA: The greed of the few outweights the freedom of the many -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGEne92iGqZUF3qPYRAijwAJ9NkpBzlyoe+L+J+cr4C/K8DTDMfQCcCZ7m LHsXGhDFeYsY8tr9YVtQ+Nc= =7KDS -----END PGP SIGNATURE----- ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
