On Wed, 2009-09-09 at 09:50 -0700, skar karthikeyan wrote: > My requirements are(again): > > 1) Content should be encrypted only on the server. And public key must > stay only on the server. No other person should have access to the > public key. > 2) Private key on the client machine should decrypt the file. It > should have only the private key, not the public key. That way, no > hostile user can create his own encrypted content and decrypt the file > using the private key. And without the private key, client shouldn't > be able to decrypt the file.
IMHO, this is a statement of how an implementation must solve your problem, not a statement of the problem you are trying to solve. I suggest that you forget for the moment everything you think you know about public and private keys, state your problem, and then listen to the responses you get. Paul Allen ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
