Osama Al-Dosary wrote:
>
> Thank you for the reply.
>
> But can an attacker decrypt the output without the corresponding private
> key?
>
Realistically, no.
They need the private key to decrypt the 3DES key and they need the 3DES
key to decrypt the encrypted content.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]