I am doing some work with a government agency who is requiring 128
"bite" (a direct quote, by the way) SSL encryption in order to
communicate their information over the Internet. We have a direct line
to their office to get the information and then we relay that to our
customers via the Internet. Another requirement of theirs is that we use
a session based key. We are writing both client and server applications
and so have complete control over the design. What would be a good means
of generating a "session based" key? I believe that I would have to
disable key caching on the server, correct? As well as generating the
key on each connect. How do I generate this key and is that going to
take a lot of time? I am doing this inside of a Windoze app linking
against the library in VC++.
Thanks,
Sean Walker
Dingbat Designs
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
