Hi If I have a PKCS#7 that is only encrypted (pkcs7_enveloped) , how can I then be sure of the integrity of the data? With a signed PKCS#7 you can verify the signature, but what if there is no signature. Does the PKCS#7 format itself make it impossible to tamper with such an encrypted "blob" or is there some OpenSSL function that can verify the integrity (like PKCS7_verify)?
Thanks, Kim Hellan KMD / KMD-CA ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]