> >On Tue 4/08/09 10:19 AM , "Tom Horstmann" t...@utome.de sent: >> Is there a way to determine if >> a string is encrypted in DES or AES? > >No > >> Will the decrypt AES fail on a DES >> encrypted string always or will openssl return a good return but with >> garbage as the decrypted string? > >The latter
To the OP. If you are not overly burdened by storage size, then I would suggest you move to use CMS 3 enveloping for your cryptograms. This gives you the benefit of a structured cryptogram, with OID's embedded to identify the crypto algorithm in use, etc. This way, all your new cryptograms will be valid CMS3 structures and your legacy DES data won't be. At least it gives you a fighting chance to decide which code paths to use to decode the data. You can use KEK mode for preshared keys or KTRI mode if you have target certificates. Carl ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
