Dear Friends, So far what I have done: I have downloaded OpenSSL version 0.9.7 from www.openssl.org & installed on Suse Linux 9.2 version. Sample code has been written for client & server communication using OpenSSL Library, which uses two .PEM files (one for server & the other for client, which consist of RSA private key and Certificate) for key exchanging. Presently the Application is compiling & executing with no errors. I am able to Communicate & transmit data between server & client applications without any problem.
However, I would like to know the following things how it works & what else is required to learn & demonstrate the openSSL with it's full functionality. I request you please find your time to answer my following doubts:- 1. While handshaking between client and server, using SSL_get_cipher I am able to see only one cipher always (i.e DES-CBC3- SHA). I learnt from the books/articles that openSSL uses many ciphers in the library and able to change the ciphers every time for each session /connection. Please let me know how to use different ciphers for different sessions. How to check the list of ciphers supported by the version. Is there any configuration to be done to include different ciphers available in openSSL library or is there any method of using inbuilt functions. 2. How to check the server certificate received at client side (it is showing issuer and subject details only)? How to check the server public key at the client side? 3. How to check handshaking details like CIPHER List received from client, Random data, and from server chosen cipher, random data and certificate to get server public key? 4. How to set up the CA(certificate authority) to get the signature of public key & How to work with CA? 5. How to check premaster secret sent by the client to server? 6. How to check what are the keys computed by client/server? 7. How to check the encrypted data before sending it out? 8. How it will generate MAC of handshake messages for both client/server? 9. Testing methods to test: speed of transmission on OpenSSL socket, Algorithm used for Encryption/Decryption, Key Exchange algorithm used & outputs at each stage. 10.How to use openSSL features. 11.PKI & Digital certificates. 12. How to setup CA and Client/server digital certificates 13. Documentation on the above doubts 14. Sample code on the above subjects on Linux platform I have sent the same information to Saifi khan and waiting for reply. Thanks in advance regards Hari Naik J
