Hi, I am just wondering if there is a way to realize the following scenario with the help of OpenSSL libraries, here is the brief explanation in this regard. --------------------------------- I have a client and Server who need to setup a secure connection using TLS/SSL. But as part of handshake Server sends its certificate to the Client. But Client doesn't have any certificates with it to Authenticate the certificate, rather it needs to communicate (a non-blocking call )with another entity(like Certificate Authority (CA) ) to get the certificate validated. This CA will look through its list of certificates to authenticate the it and inform back to the Client in an Asynchronous manner(may be some callback) that the certificate is valid. Now the Client will proceed further with the Server to complete the Handshake and setup the connection. Here is a pictorial description of this scenario for better clarity --------------------------------- I went through the available documentation, to the best of my understanding I couldn't find the library APIs(SSL/BIO/X509) to realize the above scenario. Is there any way to fit in the above verification setup as part of the handshake? It will be of great help if anybody can provide me the pointers in this regard. Thanks for your help in advance. Regards Vijay
<<att4d85f.jpg>>
