[openssl-users] Authenticated encryption in CMS with OpenSSL

Christian Böhme christian.boehme at cloudandheat.com
Fri Jul 20 13:56:29 UTC 2018

On 20.07.2018 15:42, Salz, Rich via openssl-users wrote:

> Sorry I was not clear.
> This has not been implemented.  In recent releases, we added a check to disallow AEAD ciphers,
> rather than failing (perhaps SILENTLY) later on.

Yeah, the checks happen in  crypto/evp/evp_lib.c:EVP_CIPHER_param_to_asn1() .

I understand that AEAD cipher support for CMS would have to be written from
scratch, then.


*Christian Böhme*

Developer System Integration


*CLOUD & HEAT Technologies GmbH*
Königsbrücker Str. 96 (Halle 15) | 01099 Dresden
Tel: +49 351 479 3670 - 100
Fax: +49 351 479 3670 - 110
E-Mail: christian.boehme at cloudandheat.com <mailto:christian.boehme at cloudandheat.com>
Web: https://www.cloudandheat.com <https://www.cloudandheat.com>

Handelsregister: Amtsgericht Dresden
Registernummer: HRB 30549
USt.-Ident.-Nr.: DE281093504
Geschäftsführer: Nicolas Röhrs

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 533 bytes
Desc: OpenPGP digital signature
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20180720/6f33bb60/attachment.sig>

More information about the openssl-users mailing list