On Tue, Feb 14, 2006 at 02:50:19PM -0800, Bob Mearns wrote:
> Sorry - more details: This isn't a comm aplication - it amounts to
> authentication of application data files. The signer is an utility which
> exists solely in a vendor's environment. The verifier is an application
> that exists in a consumer (potentially hostile) environment. Hence
> asymmetric key algorithms are a fit.
>
If you want small, publically verifiable signatures for stored data, your
only choice is ECC. Staying clear of the patents may be difficult (IANAL)
and OpenSSL may not yet include all the required tooling. If this was
work for the US government, you could use Suite-B under the NSA license,
but its lowest approved security level is a bit stronger than you want.
(ECC of course can use smaller keys, but those are not covered by Suite B.)
--
Viktor.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
