[openssl-users] Encrypting using EC public key

Viktor Dukhovni openssl-users at dukhovni.org
Mon Jan 16 16:30:24 UTC 2017

> On Jan 16, 2017, at 4:35 AM, Matt Caswell <matt at openssl.org> wrote:
> OpenSSL only supports ECDH (for key exchange) and ECDSA (for digital
> signatures) for elliptic curve keys, i.e. there are no ec encryption
> algorithms available.

That said, IIRC CMS supports EC public keys, by performing off-line

commit 88e20b8584a78c803eca7aa9fcf8c46ff0ece4ae
Author: Dr. Stephen Henson <steve at openssl.org>
Date:   Wed Jul 17 15:13:37 2013 +0100

    Add support for ECDH KARI.
    Add support for ECDH in enveloped data. The CMS ctrls for the EC ASN1
    method decode/encode the appropriate parameters from the CMS ASN1 data
    and send appropriate data to the EC public key method.

And further refinements in later commits.


More information about the openssl-users mailing list