Well, I am not just a software engineer I am much more a kind of embedded
engineer.
In fact we are not doing just software security products like KeyTool SSL,
Unicert..., we are doing secure hardware too. Our tamper resistant devices
have got the certification FIPS level 4 and ITSEC 3 is on its way. What we
try to achieve is to make our hardwares interact with as many as possible
crypto environment. For the moment, our hardwares are accessible through a
PKCS11 module and my job is to see how we can use them through OpenSSL.
For this reason I sent some emails about RSA/DSA_key_generation and
ENGINE_load_priv/pub_key to see how our hardware key management can fit
openSSL scheme.
So do not worry I am trying to robe any crypto technology by inspecting
OpenSSL code just to write a ENGINE Hook to it !
If I need to follow some specific procedure to add a new type of ENGINE hook
to OpenSSL, let me know I will do it with pleasure.
Anyway, any help about key generation (no ENGINE hook available? cannot
dynamically create a key into an ENGINE ?) and key management will be
greatly appreciated.
Cheers
> -----Original Message-----
> From: Rob Neff [mailto:[EMAIL PROTECTED]]
> Sent: 08 February 2001 00:24
> To: [EMAIL PROTECTED]
> Subject: Re: ENGINE_load_key
>
>
> [snip]
> >
> > Corinne Dive-Reclus, Principal Software Engineer
> > Baltimore Technologies, Focus 31, West Wing,Cleveland Road, Hemel
> Hempstead,
> > Hertfordshire, HP2 7BW, England
> > Tel: +44 (0) 1442 342600 Fax: +44 (0) 1442 347399
> > E-mail [EMAIL PROTECTED]
> > Website <http://www.baltimore.com/>
>
> Just out of curiosity, why is a software engineer from
> Baltimore security
> products questioning OpenSSL usage? I was under the impression
> Baltimore sold their own commercial version of SSL enabled products.
> Forgive me for my ignorance of those products, but are you now
> using, or have you always used, OpenSSL within your product
> offerings? Again, just curious.
>
>
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> Development Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
>
>
> This footnote confirms that this email message has been swept by
> MIMEsweeper for the presence of computer viruses.
>
-----------------------------------------------------------------------------------------------------------------
The information contained in this message is confidential and is intended
for the addressee(s) only. If you have received this message in error or
there are any problems please notify the originator immediately. The
unauthorized use, disclosure, copying or alteration of this message is
strictly forbidden. Baltimore Technologies plc will not be liable for direct,
special, indirect or consequential damages arising from alteration of the
contents of this message by a third party or as a result of any virus being
passed on.
In addition, certain Marketing collateral may be added from time to time to
promote Baltimore Technologies products, services, Global e-Security or
appearance at trade shows and conferences.
This footnote confirms that this email message has been swept by
Baltimore MIMEsweeper for Content Security threats, including
computer viruses.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
