Re: Why don't openssl RSA work for Word Document file?

2010-01-28 Thread Namrata Sorte
Hi, Actually I want to Sign Word Document (.doc) file using RSA (both encryption-decryption signing-verifying) algorithm. So could you please tell me what modification will be required to make in existing algorithm to support signing word document. Thanking you, Namrata On Wed, Jan 27, 2010 at

sign digest and build pkcs#7

2010-01-28 Thread Jaraba Nieto, Fernando
I would know if it's possible with openssl to sign a digest message, without using the original document. If it's then I can send hash digest to the client and receive signed hash to build pkcs#7 structure. Thanks a lot Fernando.

Re: Why don't openssl RSA work for Word Document file?

2010-01-28 Thread Patrick Patterson
Hi there: It is really quite simple. How do you want to sign or encrypt this document? Do you want to do it natively from word? Or do you want to do this from a Unix command prompt? What formats do you want it encrypted in? How will the consumer decrypt or verify the document? Again, do you want

Re: Why don't openssl RSA work for Word Document file?

2010-01-28 Thread Cristian Thiago Moecke
I guess, since this is the openssl users list, he wants to use openssl to sign a word document file. So, you will need to at least take a hash of the document first, using openssl dgst. But Patrick recommendations apply. I guess you may want a more user friendly sollution. So, please explain in

RE: Why don't openssl RSA work for Word Document file?

2010-01-28 Thread Tim Ward
I guess, since this is the openssl users list, he wants to use openssl to sign a word document file. One might indeed so guess. But there's different ways of doing that. My guess is that he wants to call the OpenSSL API from VB code sitting behind a sign this document button on a Word

crlDistributionPoints in issuer vs user certificates

2010-01-28 Thread Björn Lantz
Dear listreaders, I have a question about whos/which CRL the crlDistributionPoints in a certificate should point out. I have spent a few days looking for a recommendation or common practice, but without success. The alternatives for a certificate are of course to point out its own crl, the

Re: crlDistributionPoints in issuer vs user certificates

2010-01-28 Thread Patrick Patterson
Hello Björn; On January 28, 2010 05:40:57 am Björn Lantz wrote: Dear listreaders, I have a question about whos/which CRL the crlDistributionPoints in a certificate should point out. I have spent a few days looking for a recommendation or common practice, but without success. Check out the

Re: Why don't openssl RSA work for Word Document file?

2010-01-28 Thread John R Pierce
Namrata Sorte wrote: Hi, Actually I want to Sign Word Document (.doc) file using RSA (both encryption-decryption signing-verifying) algorithm. So could you please tell me what modification will be required to make in existing algorithm to support signing word document. openssl is designed

Re: Why don't openssl RSA work for Word Document file?

2010-01-28 Thread Patrick Patterson
On January 28, 2010 01:05:25 pm John R Pierce wrote: Namrata Sorte wrote: Hi, Actually I want to Sign Word Document (.doc) file using RSA (both encryption-decryption signing-verifying) algorithm. So could you please tell me what modification will be required to make in existing

RE: Why don't openssl RSA work for Word Document file?

2010-01-28 Thread David Schwartz
Namrata Sorte wrote: Actually I want to Sign Word Document (.doc) file using RSA (both encryption-decryption signing-verifying) algorithm. So could you please tell me what modification will be required to make in existing algorithm to support signing word document. I don't know what I can

RE: renegotiation with client certificate

2010-01-28 Thread Adam Grossman
hello, so close, yet so far i fixed it where the client is sending the it's certs over and the handshake is complete. but i have two problems: 1. for different clients, i have different CA certs. so i load them all up when the server starts up using:

RE: Question about Self-Signed Certificates

2010-01-28 Thread Dave Thompson
From: owner-openssl-us...@openssl.org On Behalf Of Kyle Safford Sent: Monday, 25 January, 2010 11:49 I am using Self-Signed Certificates and had a few questions about them. When running the command to verify whether the certificate chain is valid or not (in

Re: renegotiation with client certificate

2010-01-28 Thread Dr. Stephen Henson
On Thu, Jan 28, 2010, Adam Grossman wrote: hello, so close, yet so far i fixed it where the client is sending the it's certs over and the handshake is complete. but i have two problems: 1. for different clients, i have different CA certs. so i load them all up when the server

Re: sign digest and build pkcs#7

2010-01-28 Thread Dr. Stephen Henson
On Thu, Jan 28, 2010, Jaraba Nieto, Fernando wrote: I would know if it's possible with openssl to sign a digest message, without using the original document. If it's then I can send hash digest to the client and receive signed hash to build pkcs#7 structure. It is possible using the