On Wed, Sep 9, 2009 at 8:54 PM, David Schwartz <dav...@webmaster.com> wrote:
> > > I suggest you find someone familiar with encryption and have a dialogue > with > them until a solution emerges. It's just going to take ridiculously long > going back and forth this way because you don't seem to have any kind of > statement of your requirements. > Thanks for the advice. Hope this one is clear. Here are the concrete requirements: 1) Content should be encrypted only on the server. And public key must stay only on the server. No other person should have access to the public key. 2) Private key on the client machine should decrypt the file. It should have only the private key, not the public key. That way, no hostile user can create his own encrypted content and decrypt the file using the private key. I don't think there's anything more to what I need. And it basically boils down to separating the public and private keys and finding a way to not have the public key inside the private key, which is the default in openssl. cheers, skar.
