The Cryptographic Message Syntax (CMS) is the IETF's standard for cryptographically protected messages. It can be used to digitally sign, digest, authenticate or encrypt any form of digital data. OpenSSL provides a family of functions with names starting with `CMS_` to handle this format.
Questions tagged [openssl-cms]
7 questions
3
votes
0 answers
CMS_verify fails to verify a messages created with CMS_sign
I'm stuck on really strange problem evolving aroung the CMS_verify() method in OpenSSL. I'm developing a method to sign and verify data in C++ with OpenSSL, but the verification throws a very strange error as seen in the following code stub:
//…
Norman
- 73
- 7
2
votes
1 answer
Openssl Asn1parse does not extract data correctly
Issue in decoding openssl data using asn1parse. After using asn1parse command , out.pem contains does not match with expected output. Both the actual and expected output are shown below.
Please help me in this issue.
openssl asn1parse -inform PEM…
user3820915
- 23
- 4
1
vote
0 answers
Is there any option in Openssl cms sign to view all the signature algorithms available in that particular version
In Openssl command line i can always view the ciphers available for cms encryption using below command
openssl enc -ciphers
But is there any similar command to view all the signature algorithms available for openssl cms -sign sign or openssl cms…
Madass9
- 11
- 1
0
votes
0 answers
How to sign a p7b with OpenSSL
I have a 323kb P7B containing 100 certificate that I've created from a 340kb PEM bundle. When I attempt to sign the P7B it completes but the output is instead only a 3k P7B containing the signature and signing cert only and none of the internal P7B…
user3665852
- 57
- 1
- 5
0
votes
1 answer
How to replicate bouncycastle CMSEnvelopedData decryption using Openssl
I have working code that uses Java Bouncycastle lib that (as I understood) decrypts CMS data.
byte[] encryptedData = Base64.decode(encryptedText);
CMSEnvelopedData cmsEnvelopedData = new CMSEnvelopedData(encryptedData);
RecipientInformationStore…
Kanstantsin T.
- 3
- 2
0
votes
0 answers
OpenSSL C API to implement openssl asn1parse logic
Decoded data using openssl asn1parse with the command "openssl asn1parse -in a.pem -out b.pem".
How to implement the same using Openssl C language API.
user3820915
- 23
- 4
0
votes
0 answers
Configuring Server Intelligent Agent with CA signed p12 certificate?
I have a cert signed by a CA, and I need to "extract" the info from it for Server Intelligent Agent (SIA).
I converted p12 to jks for Tomcat already, but SIA needs DER files and private.key.
How do I get cacert.der, servercert.der and private.key…
milenka
- 1