Is it possible that OPENSSL_NO_DEPRECATED_3_0 is defined and that’s what’s
causing the issue with DCMTK configuration?
>From ts.h:
# ifndef OPENSSL_NO_DEPRECATED_3_0
# define TS_VERIFY_CTS_set_certs(ctx, cert) TS_VERIFY_CTX_set_certs(ctx,cert)
# endif
STACK_OF(X509)
You should use some Key Derivation Function (KDF) to derive a key from
this shared secret. For example TLS-1.3 uses HKDF for that.
The best way would be to use TLS-1.3 (or some other standardized secure
protocol) directly instead of inventing and implementing your own
protocol though.
Tomas
Hi OpenSSL,
I am using group 19 which is ECDH elliptic curve group (NID_X9_62_prime256v1)
and is giving 32 bytes/256 bit of shared secret key.
I want to use it to work with AES-128 CBC encryption algorithm. As the key
length generated by ECDH is 32 bytes, is there any way to generate the key
Hi,
I am working to package OpenSSL 3.1.x with my product.
As I prefer to be FIPS complaint, I would like to use FIPS module from
OpenSSL 3.0.9.
1) From the Documentation(
https://github.com/openssl/openssl/blob/master/README-FIPS.md) , what I
understood is,
I need to build and