If you control both the client and server, you can use Diffie-Hellman/DSA.
The US patent for DH expired in 1997. DSA is patented by the government
but can be used at no charge as long as you follow the standard.
Disclaimer: IANAL etc. Technical note: DH is somewhat less cpu-efficient
than RSA with the same key size. If you expect very high server loads,
you might look for a different solution.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
