Hello all! I have an desktop/server agent that listen for TCP connections to process some information. And now i´m trying to implement privacy and authentication to this application, to unsure that only my trusted application interact with these TCP agents.
I started reading the article http://www.rtfm.com/openssl-examples/ and I understood how to start working with the contexts and use the IO objects, but I need to understand which kind of keys I need to use to do this job because this example come with pre-created keys don't saying nothing about it's creation. Im posting here because all examples that I found at internet is about private keys and certificate requests to use with HTTPS. Basicaly I need to know how to create two compatibles private keys to communicate with the agent. The agent, that listen for the connections, needs a key that could not be used to connect in another agents because it will be the same in all desktops and servers at the network and only the trusted clients will have the key that permit to connect on all agents. Another problem is that I'm not sure if It really needs a self-signed certificate to authenticate the clients in a scenario that is already implemented a method with fixed pair of private keys. Someone could help me in this objective? Examples, articles and documentations will be apreciated. Thanks.... :P Renato A. Ferreira
