Hi List,
With the list help I've recently implemented a sign and verify functions using
EVP_DigestSign{Init/Update/Final}.
This gives back a variable length signature based on the selected digest. My
client however now _also_ requires the option to package the signature in
PKCS#7 for transmission with the original message/data.
Q: Which set of API calls (PKCS7 or CMS) will help me to simply package my
existing signature with the Public certificate (as far as I know this is
basically the important information in a detached PKCS7 package) to get a valid
PKCS#7 package?
Since only the signature need to be package (no data enveloping) I think simple
PKCS7 should be sufficient - correct?
Thanks for your time
Regards,
Leon Brits
