Hello!
I'd like to create a DER-encoded PKCS7 message with the signedData and
envelopedData chaining.
openssl documentation advises
* Sign and encrypt mail: *
* openssl smime -sign -in ml.txt -signer my.pem -text \
| openssl smime -encrypt -out mail.msg \
-from [email protected] -to some...@somewhere \
-subject "Signed and Encrypted message" -des3 user.pem
*
But I need in encryption and signing of the binary payment file which
intended to be transferred by a transport different from e-mail.
How can I create DER-encoded binary PKCS7 message with a chained enveloping
and signing of the binary data using openssl?
What chaining way is preferable from the thirdparty systems compatibility
point of view?
- Specify signed content type as data and signed content as octet string
of the enveloped data bytes.
- Specify signed content type as envelopedData and signed content as
enveloped data itself.
Thanks!
Alexey Svatseff.
