incubator-ooo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Pedro Giffuni <...@apache.org>
Subject Replacing nss with OpenSSL (was Re: [PATCH] Fix for #118485#, #108221#, #67705#)
Date Thu, 13 Oct 2011 15:53:50 GMT


--- On Thu, 10/13/11, Herbert Duerr <hdu@apache.org> wrote:
...

> > - Use of OpenSSL instead of nss for AES encryption.
> 
> I'm looking into replacing nss by openssl for encryption
> and signing of documents. NSS is currently also responsible
> for key and certificate management and replacing that seems
> to be the really tricky part...
> 
Thanks for working on this!

FWIW, Apache has something for that:

http://santuario.apache.org/cindex.html

but then this FAQ is interesting:
_____
1.2. Does the library provide a full C++ wrapper for OpenSSL?

The C++ crypto interface layer provided for the library
provides only the smallest subset of cryptographic functions
necessary for the library to make calls to the provided library. Applications will need to
work directly with OpenSSL (or other
libraries) to read and manipulate encryption keys that should
then be wrapped in XSECCrypto* objects and passed into the
library.
_____

Pedro.

Mime
View raw message