On Thu, Jan 07, 2010 at 07:11:28PM -0800, Michael D wrote:
> Hello,
> Once again I back trying to understand ECDHE.
>
> I would like to use openssl and s_server and s_client for my
> trail and error testing.
>
> I have my notes on generating a key file, but I can't seem to
> find my notes on starting s_client and s_server such that they
> do the elliptic curve diffie helman negoications.
>
The OpenSSL 1.0.0.beta4 snapshot has the following option for
s_server:
-named_curve arg - Elliptic curve name to use for ephemeral ECDH keys.
Use "openssl ecparam -list_curves" for all names
(default is nistp256).
To also use ECC certs, just use an appropriate -cert/-key arguments.
--
Viktor.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
