[openssl-users] EVP_SealInit question

Dr. Stephen Henson steve at openssl.org
Mon Aug 15 21:38:30 UTC 2016

On Mon, Aug 15, 2016, Norm Green wrote:

> The man page for EVP_SealInit says:
> "The public key must be RSA because it is the only OpenSSL public
> key algorithm that supports key transport."
> 1 ) Is this still true?

Yes: the only algorithm we currently support which handles key transport is

> 2) Will this restriction change now that RSA key transport is being
> dropped from TLS 1.3 (or so I've read...)?

Don't undertand. The algorithm limitation has nothing to do with TLS

Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org

More information about the openssl-users mailing list