On Tue, 2015-03-17 at 22:22 +0000, Tigran Gyonjyan (BLOOMBERG/ 731 LEX) wrote: > Thank you for your responses, PKCS#11 could be the right way to go. I > am hoping there is flexibility as per what functionality I want to > delegate (just need the decrypt piece). > If I had to implement a fully fledged PKCS#11 module that would be an > overkill. I hope that's not the case?
You don't have to have the *cert* in PKCS#11. Only the key. A module to implement that much can be fairly trivial. -- dwmw2
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
