Infobox software name OpenSSL logo screenshot caption developer The OpenSSL Project frequently updated ... http www.openssl.org OpenSSL is an open source implementation of the Transport Layer Security SSL ... utility functions. Wrappers allowing the use of the OpenSSL library in a variety of computer ... and Microsoft Windows . IBM provides a port for the IBM i System i OS 400 . OpenSSL is based ..., when Young and Hudson both started to work for RSA Security . Major version releases OpenSSL 1.0.0f was released on Jan 4th, 2012. OpenSSL 1.0.0 was released on March 29, 2010. OpenSSL 0.9.8 was released on July 5, 2005. OpenSSL 0.9.7 was released on December 31, 2002. OpenSSL 0.9.6 was released on September 25, 2000. OpenSSL 0.9.5 was released on February 28, 2000. OpenSSL 0.9.4 was released on August 9, 1999. OpenSSL 0.9.3 was released on May 25, 1999. OpenSSL 0.9.2b was released on March 22, 1999. OpenSSL 0.9.1c was the first release, on December 23, 1998. Algorithms OpenSSL supports a number ... 89 ref name gost cite web url http cvs.openssl.org fileview?f openssl engines ccgost README.gost title GOST engine OpenSSL 1.0.0 README publisher cvs.openssl.org ref Cryptographic hash function s MD5 ... 140 2 compliance OpenSSL is one of the few open source programs to be involved with validation under ... Cryptographic Module Validation Program CMVP . OpenSSL itself is not validated, but a component called the OpenSSL FIPS Object Module, based on OpenSSL, was created to provide many of the same capabilities ... OpenSSL and FIPS 140 2 publisher openssl.org ref A certificate was first awarded in January 2006 ... ref Licensing OpenSSL is dual licensed under the OpenSSL License and the SSLeay License . ref cite web url http www.openssl.org source license.html title OpenSSL Source, License publisher openssl.org ref OpenSSL License is Apache License 1.0 and SSLeay License is 4 clause BSD License . The common usage of the term dual license is that the user may pick which license they wish to use. However, OpenSSL ... more details
Ironclad is a Common Lisp cryptography Library computing library aiming to provide functionality similar to OpenSSL or Crypto . External links http method combination.net lisp ironclad Ironclad homepage http www.cliki.net Ironclad Ironclad on cliki Common Lisp Category Common Lisp software compu library stub security software stub ... more details
Image CMVPlogo.gif thumb right 226px Logo of the Cryptographic Module Validation Program. The Cryptographic Module Validation Program CMVP is a joint American and Canadian security accreditation program for cryptographic modules. The program is available to any vendors who seek to have their products certified for use by the U.S. Government and regulated industries such as financial and health care institutions that collect, store, transfer, share and disseminate sensitive, but not classified information. All of the tests under the CMVP are handled by third party laboratories that are accredited as CMTL Cryptographic Module Testing Laboratories by the National Voluntary Laboratory Accreditation Program NVLAP . Product certifications under the CMVP are performed in accordance with the requirements of FIPS 140 2 . The CMVP was established by the U.S. National Institute of Standards and Technology NIST and the Communications Security Establishment CSE of the Politics of Canada Government of Canada in July 1995. See also CAVP Cryptographic Algorithm Validation Program CAVP External links http csrc.nist.gov cryptval NIST Cryptographic Module Validation Program http csrc.nist.gov cryptval 140 2.htm NIST FIPS 140 2 http www.oss institute.org index.php?option com content&view article&id 410 fips validated openssl program faq&catid 140 fips validated openssl modules&Itemid 207 FAQ of a validated implementation OpenSSL crypto stub Category Cryptography standards ... more details
IPstack The Time Stamp Protocol , or TSP is a cryptographic protocol computing protocol for certifying Trusted timestamping timestamp s using X.509 certificates and public key infrastructure . The timestamp is the signer s assertion that a piece of electronic data existed at or before a particular time. External links IETF RFC 3161, official specification http www.opentsa.org OpenTSA is an open source project to add time stamping functionalities to OpenSSL . Category Cryptographic protocols Crypto stub ru Time Stamp Protocol uk TSP ... more details
Layer Security TLS . Although OpenSSL already existed, OpenSSL s license is not compatible with the GPL ref cite web url http people.gnome.org markmc openssl and the gpl.html title The OpenSSL ... under the GPL, such as GNU software, could not use OpenSSL without making a GPL linking exception . The list ... software Cryptography CyaSSL OpenSSL PolarSSL Network Security Services Comparison of TLS Implementations ... more details
of how you can examine its ASN.1 structure using OpenSSL code openssl asn1parse in your request code ... REQUEST pre The above certificate signing request s ASN.1 structure as parsed by openssl appears ... the base64 encoding into the command code openssl asn1parse inform PEM i code where PEM stands ... Distinguished Encoding Rules in base64. pre How do you decode your CSR using openssl in Debian Etch ... openssl command openssl req in myreq.pem noout text You can check the signature on your CSR by the following openssl command openssl req in myreq.pem noout text verify pre CSR Decoding Tools ... listed in the External links section below. The publicly available http www.openssl.org OpenSSL service ... CSR Decoder Decode a certificate signing request CSR to check its contents. Uses OpenSSL. A http ... CSR Decoder can be used to decode and examine an encoded CSR but not based on OpenSSL. http www.ssl.nu ... more details
Correct title title PKCS 12 reason hash In cryptography , PKCS 12 is one of the family of standards called PKCS Public Key Cryptography Standards PKCS , published by RSA Laboratories . It defines a file format commonly used to store X.509 private key s with accompanying public key certificate s, protected with a password based symmetric key , and is the successor to PFX from Microsoft . PFX has received heavy criticism of being one of the most complex cryptographic protocols ref http www.cs.auckland.ac.nz pgut001 pubs pfx.html PFX How Not to Design a Crypto Protocol Standard ref , but nevertheless remains the only standard way today to store private keys and certificates in a single encrypted file citation needed date October 2010 . The file extension for PKCS 12 files is .p12 . These files can be created, parsed and read out with the OpenSSL pkcs12 command. References reflist External links http www.rsa.com rsalabs node.asp?id 2138 PKCS 12 Personal Information Exchange Syntax Standard , RSA Laboratories http www.openssl.org docs apps pkcs12.html OpenSSL pkcs12 documentation http www.cs.auckland.ac.nz pgut001 pubs pfx.html PFX How Not to Design a Crypto Protocol Standard , Peter Gutmann computer scientist Peter Gutmann Crypto navbox DEFAULTSORT Pkcs12 Category Cryptography standards Crypto stub fr PKCS12 ru PKCS12 ... more details
Multiple issues wikify February 2012 cleanup January 2009 orphan January 2009 SPKAC is an acronym that stands for Signed Public Key and Challenge, also known as Netscape SPKI It is a format for sending a Certification request Certification Signing Request it encodes a public key, that can be manipulated using openssl see http www.openssl.org docs apps spkac.html spkac openssl man page . It is created using the little documented http developer.mozilla.org en HTML HTML Extensions KEYGEN Tag HTML keygen element inside a number of Netscape compatible browsers. HTML5 has now specified the http dev.w3.org html5 spec Overview.html the keygen element keygen element , and has more info on http dev.w3.org html5 spec Overview.html signedpublickeyandchallenge SPKAC This can be very useful for making it easy to create client side certificates through a web service for protocols such as http www.w3.org 2008 09 msnws papers foaf ssl.html foaf ssl . An overview of how http lists.whatwg.org pipermail whatwg whatwg.org attachments 20080714 07ea5534 attachment.txt the keygen tag works with spkac in php . Bouncy Castle provides a http www.bouncycastle.org docs docs1.5 org bouncycastle jce netscape NetscapeCertRequest.html Java class to process spkac, shown in action in http lists.foaf project.org pipermail foaf protocols 2009 January 000144.html this simple server implementation in Java . The user interface needs to be improved in browsers, to make it more obvious to users when a server is asking for the client certificate http www.heise online.co.uk security User tracking with SSL certificates in Firefox news 96239 as explained by the heise online article . Category Cryptography ... more details
8ff5909 ref There is a plugin to OpenSSL to support AF ALG, ref cite web first Markus title OpenSSL AF ALG url http carnivore.it 2011 04 23 openssl af alg accessdate 29 December 2011 date 2011 10 22 ... guest work OpenSSL accessdate 29 December 2011 authorlink nepenthesdev at gmail.com date Sun Jul 03 ... more details
lowercase Unreferenced date October 2008 neon is a library computing library for accessing HTTP and WebDAV servers for the C programming language . It is free software and is licensed under GNU Lesser General Public License LGPL . neon relies on either OpenSSL or GnuTLS for secure https connections and either libxml or expat XML expat for parsing WebDAV XML responses. Among others, neon is used by the Subversion software Subversion version control system, GnomeVFS file system abstraction layer and the davfs2 network file system. External links http www.webdav.org neon neon home page compu library stub Category C libraries ... more details
projects security pki nss OpenSSLOpenSSLOpenSSL project yes free OpenSSL license Licensing OpenSSL SSLeay dual license Eric Young, Tim Hudson, Sun, OpenSSL project, and others 0.9.8t 1.0.0g 01 ... Security Services NSS yes yes yes no no no no OpenSSL yes yes yes yes ref name tlsv11 initial ... yes Network Security Services NSS no MatrixSSL no OpenSSL no PolarSSL no SChannel no Security Builder ... side only ref partial ref name client side yes yes no no no OpenSSL yes yes yes yes no yes no yes ... NSS no no no no no no no no no OpenSSL yes no ref http rt.openssl.org Ticket Display.html?id 1794&user guest&pass guest patch is available , and appears to be planned for OpenSSL 1.0.1 ref no no no yes ... yes no yes no yes no no no Network Security Services NSS yes no yes yes yes yes yes no OpenSSL yes ... open no no no no no Network Security Services NSS no no no yes no OpenSSL yes no no yes yes PolarSSL ... no no no Network Security Services NSS no yes yes yes no no OpenSSL no yes yes yes yes yes PolarSSL ... open no Network Security Services NSS yes OpenSSL yes PolarSSL no SChannel no Security Builder SSL ... NSS yes PKCS11 OpenSSL yes PKCS11 via external module Custom method PolarSSL yes PKCS11 via libpkcs11 ... ref no no OpenSSL yes yes yes no no ? yes yes ? no no PolarSSL no partial ref name client side no no no no no no no SChannel ... libc br libnspr4 br libsoftokn3 br libplc4 br libplds4 zlib compression OpenSSL 159 kLoc libc zlib compression ... Build Tools API Manual Crypto Back end OpenSSL Compatibility Layer axTLS SSL CTX, SSL Makefile ... called nss compat ossl ref name nsscapatossl http fedoraproject.org wiki Nss compat ossl ref OpenSSL ... API Manual Crypto Back end OpenSSL Compatibility Layer Portability Concerns class wikitable sortable ..., Amiga DE, Windows, WinCE, Sony PlayStation OpenSSL C89? ? Needs mutex callbacks Set through native ... OpenSSL Website http polarssl.org PolarSSL Website http www.certicom.com index.php security ... more details
In information technology , the Datagram Transport Layer Security DTLS protocol provides communications privacy for packet information technology datagram protocols. DTLS allows datagram based applications to communicate in a way that is designed to prevent eavesdropping, tampering, or message forgery. The DTLS protocol is based on the stream oriented Transport Layer Security TLS protocol and is intended to provide similar security guarantees. The datagram semantics of the underlying transport are preserved by the DTLS protocol the application will not suffer from the delays associated with stream protocols, but will have to deal with packet reordering, loss of datagram and data larger than a datagram packet size. DTLS is defined in RFC 6347 for use with User Datagram Protocol UDP encapsulation and in RFC 5238 for use with DCCP encapsulation. See also OpenSSL a free and popular implementation of TLS added support for DTLS with version 0.9.8. CyaSSL an open source embedded SSL TLS implementation with DTLS support. GnuTLS a free software implementation of TLS with support for DTLS since version 3.0.0. Comparison of TLS Implementations External links http www.ietf.org html.charters tls charter.html The IETF TLS Workgroup http crypto.stanford.edu nagendra papers dtls.pdf The Design and Implementation of Datagram TLS http www.eldos.com sbb desc ssl.php SSLBlackbox components for Windows and .NET software development with support for DTLS http www.cisco.com en US products ps8411 tsd products support series home.html AnyConnect popular VPN Client that uses TLS and DTLS http www.yassl.com yaSSL.com SSL TLS implementation with support for DTLS since version 1.0.3 http libsystools.sourceforge.net libsystools a TLS DTLS open source library for Windows Linux using OpenSSL. FOLDOC crypto stub Category Cryptographic protocols Category Internet protocols Category Session layer protocols de Datagram Transport Layer Security es Datagram Transport Layer Security eu Datagram Transport ... more details
Tinc is a self routing, mesh networking protocol, used for data compression compressed , encrypted , virtual private networks . It was started in 1998 by Guus Sliepen , Ivo Timmermans , and Robert van der Meulen , and released as a GPL licensed project. Supported network transports IPv4 IPv6 Virtualized Ethernet via TUN TAP driver Embedded technologies OpenSSL encryption library zlib best compression LZO fast compression Projects that use tinc Freifunk tinc was enabled in their routers as of October 2006 http www.the mesh.org tiki read article.php?articleId 39 . OpenWrt has an installable package for tinc. External links http www.tinc vpn.org Homepage http tinc vpn.org examples simple bridging with dhcp server side Debian GNU Linux tinc dhcp bridging setup http www.vanheusden.com Linux tinc mini howto.html Quick & Dirty TINC setup http en.gentoo wiki.com wiki Tinc Gentoo Linux tinc setup compu network stub VPN Category Internet protocols Category Routing protocols Category Internet Protocol based network software ... more details
Infobox software name Simple Repeater stone author Hiroaki Sengoku latest release version 2.3e latest release date 2008 05 02 use port forwarding , proxy software operating system Cross platform license GNU General Public License website http www.gcd.org sengoku stone Simple Repeater stone is a port forwarding and Firewall computing firewall breaching software, used to maintain inbound and outbound communication with different network layers and protocols. Uses Portal Free software Post Office Protocol POP to APOP converter. HTTP proxy server . IPv4 to IPv6 protocol application bridge. OpenSSL tunneler. External links http www.gcd.org sengoku stone Homepage http en.sourceforge.jp projects stone SourceForge Japan project page DEFAULTSORT Stone Software Category Free network related software Category Free routing software Category Unix network related software Category BSD software Category Windows software network software stub ... more details
Infobox software name Stunnel screenshot caption Universal SSL Wrapper developer Micha Trojnara latest release version 4.50 ref http www.stunnel.org ?page sdf ChangeLog Stunnel ChangeLog ref latest release date Start date and age 2011 12 03 operating system Multi platform genre Proxy server Proxy , Encryption license GNU General Public License website http www.stunnel.org www.stunnel.org Stunnel is an open source software open source multi platform computer program , used to provide universal Transport Layer Security TLS SSL tunneling service. Stunnel can be used to provide secure encrypted connections for clients or servers that do not speak TLS or SSL natively. ref O Donovan, Barry http linuxgazette.net 107 odonovan.html Secure Communication with Stunnel , Linux Gazette, Issue 107, October 2004 ref It runs on a variety of operating systems, ref http www.stunnel.org ?page ports Stunnel Ports ref including most Unix like operating systems and Microsoft Windows Windows . Stunnel relies on a separate Library computing library such as OpenSSL or SSLeay to implement the underlying TLS or SSL protocol. Stunnel uses public key cryptography with X.509 Public key certificate digital certificates to secure the SSL connection. Clients can optionally be authenticated via a certificate too. ref http stunnel.org static stunnel.html stunnel 8 manual ref If Linker computing linked against TCP Wrapper libwrap , it can be configured to act as a Proxy server proxy Firewall networking firewall service as well. Stunnel is maintained by Micha Trojnara. Released under the terms of the GNU General Public License GPL with OpenSSL OpenSSL Licensing exception . Example scenario For example, one could use Stunnel to provide a secure Transport Layer Security SSL connection to an existing non SSL aware Simple Mail Transfer Protocol SMTP mail server. Assume the SMTP server expects TCP connections on Port 25. one would configure Stunnel to map the SSL Port 465 to non SSL port 25. A mail client ... more details
, the project has contributed funding towards the OpenSSL Software Foundation and the Open Information ... OpenSSL Software Foundation accessdate 2011 10 24 ref ref cite web url http www.openinfosecfoundation.org ... publisher Open Security Information Foundation accessdate 2011 11 08 ref OpenSSL FIPS 140 2 FIPS ... title OpenSSL and FIPS 140 2 Validation Status publisher OpenSSL accessdate 2011 11 08 ref References ... more details
digital certificates. Some well known open source implementations are EJBCA OpenCA OpenSSL , it is really ... SSL based on the functionality of OpenSSL . Mod ssl features support for Secure Sockets Layer SSLv2 ... packages the mod ssl package, an extended API, and an SSL TLS implementation toolkit such as OpenSSL ... more details
for the Unix null device dev null No footnotes date March 2010 Devnull is the name of a computer worm for the Linux operating system that has been named after dev null tt dev null tt , Unix s null device. This worm was found on 30 September 2002. This worm, once the host has been compromised, downloads and executes a shell script from a web server. This script downloads a gzip ped executable file named tt k.gz tt from the same address, and then decompresses and runs the file. This downloaded file appears to be an IRC client. It connects to different channels and waits for commands to process on the infected host. Then the worm checks for presence of the GNU Compiler Collection GCC compiler on the local system and, if found, creates a directory called tt .socket2 tt . Next, it downloads a compressed file called tt devnull.tgz tt . After decompressing, two files are created an Executable and Linkable Format ELF binary file called tt devnull tt and a source script file called tt sslx.c tt . The latter gets compiled into the ELF binary tt sslx tt . The executable will scan for vulnerable hosts and use the compiled program to exploit a known OpenSSL vulnerability. See also Linux malware External links http www.f secure.com v descs devnull.shtml F Secure s Website Linux Devnull Category Computer worms Category Linux malware malware stub ... more details
In information technology , the Transport Layer Security TLS protocol provides connection security with mutual authentication, data confidentiality and integrity, key generation and distribution, and security parameters negotiation. However, missing from the protocol is a way to multiplex application data over a single TLS session. Multiplexed Transport Layer Security MTLS protocol is a new TLS sub protocol running over Transport Layer Security TLS or Datagram Transport Layer Security DTLS . The MTLS design provides application multiplexing over a single TLS or DTLS session. Therefore, instead of associating a TLS connection with each application, MTLS allows several applications to protect their exchanges over a single TLS session. MTLS is currently in draft stage http tools.ietf.org html draft badra hajjeh mtls 05 which expired in October 2009. See also OpenSSL a free and popular implementation. GnuTLS a free implementation whose licensing is compatible with the GNU General Public License GPL . External links http www.ietf.org dyn wg charter tls charter.html The IETF TLS Workgroup http tools.ietf.org html draft badra hajjeh mtls 05 MTLS Draft http crypto.stanford.edu nagendra papers dtls.pdf The Design and Implementation of Datagram TLS Category Cryptographic protocols Category Internet protocols crypto stub bg SSL de Datagram Transport Layer Security fi TLS fr Secure socket layer ja Secure Socket Layer pt SSL ... more details
OpenCA , officially the OpenCA PKI Research Labs and formerly the OpenCA Project , is a Public key infrastructure PKI collaborative effort to develop a robust, full featured and Open Source out of the box Certificate authority Certification Authority implementing the most used protocols with full strength cryptography. OpenCA is based on many Open Source Projects. Among these there are OpenLDAP , OpenSSL and Apache Software Foundation Apache Project . The project development is divided into two main tasks studying and refining the security scheme that guarantees the best model to be used in a Certification Authority and developing software to easily setup and manage a Certification Authority. The software development side of the project is further divided into the following sub projects OpenCA PKI , a full featured PKI package. LibPKI , a library for PKI application development. OpenCA OCSPD , a small, robust Online Certificate Status Protocol daemon. PRQPD Server , a PKI Resource Query Protocol daemon for use in conjunction with the PKI package. OpenCA ng , a planned project to implement new features and overcome limitations of the current project. ng stands for Next Generation External links http www.openca.org OpenCA http www.openca.org projects openca PKI Project Category Cryptographic software crypto stub de OpenCA PKI ... more details
A null cipher is an ancient form of encryption where the plaintext is mixed with a large amount of non cipher material. It would today be regarded as a simple form of steganography . Null ciphers can also be used to hide ciphertext, as part of a more complex system. In classical cryptography a null is intended to confuse the cryptanalyst . Typically, a null will be a character which decrypts to obvious nonsense at the end of an otherwise intelligible phrase. In a null cipher, most of the characters may be nulls. An example follows Kipper 9 News Eight Weather Tonight increasing snow. Unexpected precipitation smothers eastern towns. Be extremely cautious and use snowtires especially heading east. The highway is not knowingly slippery. Highway evacuation is suspected. Police report emergency situations in downtown ending near Tuesday. Taking the first letter in each word successively yields the real message Newt is upset because he thinks he is President. Identity function encryption In modern cryptology , null cipher or NONE cipher is also defined as choosing not to use encryption in a system where various encryption options are offered, such as for testing debugging, or authentication only communication. Thus the text is the same before and after encryption. In mathematics such a function is known as the identity function . Examples of this are the eNull , aNull , Null and aDH cipher suites in OpenSSL ref http www.openssl.org docs apps ciphers.html OpenSSL Documents, ciphers 1 ref and the NULL Encryption Algorithm in IPSec. ref RFC 2410 The NULL Encryption Algorithm and Its Use With IPsec ref Decoy Cypher The weak link in decryption is the human in the loop. Human computation is slow and expensive. Whenever a cypher needs to be sent to a human for semantic processing, this substantially increases the cost of decryption. A decoy cypher can take the form of noise sending copious messages of encrypted garbage plaintext. This decreases the signal to noise ratio for human ... more details
Multiple issues notability November 2011 self published November 2011 cleanup January 2012 Infobox software name ZXID logo Image zxid tas3 ios.png released release date mf yes 2005 08 01 frequently updated Yes latest release version Release 1.03 latest release date release date mf yes 2011 08 12 operating system Cross platform programming language C C , Java, CSharp, PHP, Perl, others per SWIG language English status Active genre Identity and access management license Apache License Apache2 website http zxid.org ZXID .org ref Sampo Kellom ki ZXID , http zxid.org ref Identity Management toolkit implements standalone SAML 2.0 , Liberty ID WSF ID WSF 2.0 , and XACML 2.0 stacks and aims at implementing all popular federation, Single sign on SSO , and ID Web Services protocols. It is a C implementation with minimal external dependencies OpenSSL, CURL, and zlib ensuring easy deployment no DLL hell . Due to its small footprint and efficient and accurate schema driven implementation, it is suitable for embedded and high volume applications. Language bindings to all popular highlevel languages such as PHP , Perl , and Java programming language Java , are provided via SWIG . ZXID implements, as of Nov 2011, SP, IdP, WSC, WSP, Discovery, PEP, and PDP roles. ZXID is the reference implementation of the core security architecture of the TAS3 TAS3.eu project. IPR Status Apache2 Open Source License. All dependency libraries OpenSSL, libcurl, zlib are under similarly liberal open source license. The underlying standards are all Royalty Free as specified in Libery Alliance and OASIS IPR policies. The TAS3 architecture, of which ZXID is the reference implementation, is covered by TAS3 Consortium Royalty free to implement and use pledge at www.tas3.eu section Software http vds1628.sivit.org tas3 ?page id 138 In TAS3 General Assembly of 2010 09 13, following declaration was made TAS3 architecture and specifications, as described in public deliverables D2.1, D2.4, and D7.1, are licensed ... more details
certificate number. C ASM library BeeCrypt OpenSSL GnuTLS PolarSSL single header and source ... MeTooCrypto M2Crypto , a Python wrapper for OpenSSL http www.josh davis.org pythonAES Python AES http tachyon.in ncrypt NCrypt , a Python wrapper for OpenSSL built using Pyrex http www.louko.com ... and 256 bit CBC mode hardware encryption OpenSSL includes AES cipher support as of version 0.9.7 released in 2002 and is dual licensed under the terms of the OpenSSL License and the original SSLeay license ... more details
The Cryptographic Message Syntax CMS is the IETF s standard for Cryptography cryptographically protected messages. It can be used to Digital signature digitally sign , Cryptographic hash function digest , Message authentication code authenticate or encryption encrypt any form of digital data. CMS is based on the syntax of PKCS 7, which in turn is based on the Privacy enhanced Electronic Mail Privacy Enhanced Mail standard. The newest version of CMS As of 2009 lc on is specified in RFC 5652 but see also RFC 5911 for updated ASN.1 modules conforming to ASN.1 2002 . The architecture of CMS is built around X.509 certificate based key management, such as the profile defined by the PKIX working group . CMS is used as the key cryptographic component of many other cryptographic standards, such as S MIME , PKCS 12 and the RFC 3161 Digital timestamping protocol. OpenSSL is an open source software that can encrypt, decrypt, sign and verify, compress and uncompress CMS documents. See also Portal Cryptography CAdES computing CAdES CMS Advanced Electronic Signatures S MIME PKCS 7 External links http www.ietf.org rfc rfc5652.txt RFC 5652 http www.ietf.org rfc rfc3852.txt RFC 3852 obsolete http www.ietf.org rfc rfc2630.txt RFC 2630 obsolete http tools.ietf.org rfc rfc5911.txt RFC 5911 http www.ietf.org rfc rfc3278.txt RFC 3278 obsolete http tools.ietf.org html rfc5753 RFC 5753 Using Elliptic Curve Cryptography with CMS Categories Category Cryptographic protocols Crypto navbox Crypto stub de Cryptographic Message Syntax ja pl Cryptographic Message Syntax ... more details
Encyclopedia
top
