The way I understand is you can have authentication and encryption with TLS. When you use a cipher suite, you can specify the type of authentication, encryption, hash, etc. So, for example, you could provide TLS_DHE_DSS_WITH_NULL_SHA meaning no encryption. I believe this should work. Question was, how do you setup the Client and Server to use this? Also, is this option available in the FIPS compliant module (1.2.2)? When I looked at all the FIPS compliant cryptographic algorithms ( http://csrc.nist.gov/publications/nistpubs/800-52/SP800-52.pdf ), a suite with no encryption does not show up
________________________________ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Vijay Kotari Sent: Wednesday, June 25, 2008 4:03 PM To: [email protected] Subject: Re: SSL/TLS Authentication only What exactly do you mean? What other possible kinds of authentication do you have available? If you just want a TLS-based client and server, then OpenSSL can serve your purpose. Vijay K. On Wed, Jun 25, 2008 at 9:01 PM, Patel Dippen-CDP054 <[EMAIL PROTECTED]> wrote: Is it possible to use TLS authentication only? If so, how do I do this using OpenSSL?
