Raghunath Santhanam wrote: > Hi, > I need APIs which can > 1) sign the message using a key > 2) verify the same using the same key.
> Let me know if it is available. Must it always be impossible to be able to verify without being able to sign? Is that a design requirement? To clarify, you want a situation in which anyone who can sign can also verify and anyone who can verify can also sign? Do you need to strictly enforce this? Or is it just okay if it occurs? For example, would it be acceptable if you need key A to sign and key B to verify and you just keep those two keys together and call that the key? Or do you need it to be impossible to verify unless you can also sign? Your problem description is very vague and I don't think you'll get a useful response unless you precisely clarify what your requirements are. If I understand your question correctly, which I'm completely unsure that I do, HMAC seems sufficient. Really all you're asking for is message authentication. http://en.wikipedia.org/wiki/HMAC DS ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
