On Mon, Apr 18, 2005, Belliappa, Ashith Muddiana (STSD) wrote: > > > Hi All, > > After the SSL Handshake, all the data is encrypted and then > > transmitted between the Client and Server. I have an application > > written that needs only signed messaged to be transmitted. Whether it > > is possible to set or configure such that we can switch off encryption > > and transmitt only signed-messages after the SSL Handshake. If this > > already exists in any of the documents please provide me the pointers > > to those documents?. > >
Depends what you mean by "signed-messages". If you mean messages whose integrity is protected against attack then yes that is possible and the null ciphersuites will work. They have to be specifically enabled in the cipher string though, setting it to 'eNULL' will do that. See for example the 'ciphers' manual page for more details. If you mean "signed-messages" in the sense that digital signatures are placed on the traffic exchanged and their authenticity can be demonstrated later then SSL/TLS wont provide this facility for any ciphersuites. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
