On Mon, 27 Aug 2001, Arno Puder wrote:
>
> Hi,
>
> certificates and private keys are usually stored in PEM-formatted files
> and are loaded using the functions SSL_CTX_use_certificate_file() and
> SSL_CTX_use_PrivateKey_file().
>
> If I want to hard code the keys in my application, such as
>
> char* certificate = "-----BEGIN CERTIFICATE-----"
> "MIIC1...";
>
> is there an API that I can use in this case to initialize the keys?
It's great idea to hard-code a certificate. However, one should
think twice before doing that with private keys.
Wonderful "strings" tool available effectively voiding attempts
to keep private keys private in such an environment.
Another (light-weight) crypto technique could suit it easier providing
the same (low) level of assurance. There may be a chance to do
some protocol and keep secrets outside executables. Communications
are cheap and ubiquitous nowdays..
Regards,
Vadim
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
