On Wed, Dec 03, 2008 at 10:59:44AM -0800, Shaun R. wrote:
> OK, i converted over to EVP_*, the sign/verify works but now i'm confused
> about decrypt, for EVP_DecryptInit i need to tell it a CIPHER but i dont
> see RSA in the cipher listings on
> http://www.openssl.org/docs/crypto/EVP_EncryptInit.html# Looking closer at
> the man page it looks like RSA isnt considered a cipher, what should i be
> using to decrypt RSA messages?
Don't use RSA to encrypt. Only use it to Sign and Verify. For encryption
use AES.
You need to sign and encrypt the payload, but there are pitfalls:
http://world.std.com/~dtd/sign_encrypt/sign_encrypt7.html
--
Viktor.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
