Greetings all,
At my company we have recently set up an Ubuntu/Apache web server and
will be migrating some of our e-commerce pages from our existing IIS web
server. I am having a bit of difficulty figuring out how to handle
credit card encryption.
On our existing server we use RSA encryption via a small .NET
application. After doing a bit of research, it seemed to me that the
best way to implement this on our new server is using the openssl
command with the rsautl option. (Although our e-commerce pages are
written using PHP, I am reluctant to use the PHP-openssl library because
it seems to be buggy and poorly maintained)
I hope to use our existing private key if at all possible, for
compatibility with our existing applications on the internal side. I
have copied the existing public-key file to the new server, just to see
what would happen if I tried using it with openssl. Issuing the following:
openssl rsautl -encrypt -inkey public.key -pubin
gives this result:
unable to load Public Key
A bit of research leads me to conclude that the public-key file is not
in the correct format. It is XML formatted with sections RSAKeyValue,
Modulus and Exponent. I gather that openssl requires the key in a
format called SubjectPublicKeyInfo. So much seems to be clear; however,
I have not been able to learn whether my existing public key can be
converted into this format, or whether I am forced to generate a new key.
I would be most grateful if anyone can shed any light on this.
Apologies if this has been covered on the list before - I did search the
archives, and found some discussions that addressed some of these
issues, but they seemed to assume prior knowledge which I lack.
Thank you
Lewis
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
