I want to send encrypted information from a client to the server via non-SSL connections without using hardcode encryption key, i.e. a typical scenario. Both client and server have their private key and certificate. (RAS key, PEM format) I am thinking of two options to exchange the encryption key, which will then be use to symmetric encryption/decryption.
1. Use Diffie-Hellman 2. Use PKI Which approach is a better? If I go with 2., what APIs are used to extract the private key and public key from the PEM file? Thanks for the help. Alex ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org