Hi, Stupid question-
If I use a HSM to store private key used for SSL connections using the CryptoAPI engine for OpenSSL, is all data to be encrypted/decrypted going through my HSM? I'm- 1. Registering my HSM as a Cryptographic Service Provider, and 2. Setting my application code to initialize structural and functional references to the CAPI engine and bringing up a connection using the private key stored in the HSM. Rest of the code just uses OpenSSL functions like SSL_write() and SSL_read(). Since the key resides on the HSM, is data going to my HSM to get encrypted/decrypted, or is there a session key being made on the HSM for each SSL session that is being passed to the OS and is the OS encrypting/decrypting data in memory? Thank you, Sunjeet ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
