Manuel Sahm wrote: > could anybody explain me how to modify this programm, > to use only keys instead of certificates ?
> Thanks to all. I'm sorry to say, I don't see any easy way to do this with OpenSSL. You have two choices: 1) Roll your own on top of SSL, using algorithms similar to those in RFC4851. (As I suggested in a previous response.) 2) Don't use SSL. Use your own symmetric encryption algorithm, and use the pre-shared secret as (or, better, to generate) the key for the symmetric algorithm. Perhaps I missed something and there is some easy way. Of these two, I would recommend option 1 because it provides better data integrity checks. With option 2, a MITM could corrupt the data and it wouldn't be detectable. DS ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
