[OpenSSL Home][Home]
With public key encryption, we can take a message, and encrypt it with the recipiant's public key. In this can we have a 512-bit RSA public key to encrypt a message.
Encrypting Emails with OpenSSL for MIME Output
[OpenSSL Home][Home]
With public key encryption, we can take a message, and encrypt it with the recipiant's public key. In this can we have a 512-bit RSA public key to encrypt a message.
|
With MIME format, we define the format with "Content-Type", "Content-Transfer-Encoding" and "Content-Disposition":
Content-Disposition: attachment; filename="smime.p7m" Content-Type: application/pkcs7-mime; smime-type=enveloped-data; name="smime.p7m" Content-Transfer-Encoding: base64
The following is an example of signing for a message of "Hello":
MIME-Version: 1.0 Content-Disposition: attachment; filename="smime.p7m" Content-Type: application/pkcs7-mime; smime-type=enveloped-data; name="smime.p7m" Content-Transfer-Encoding: base64 MIH/BgkqhkiG9w0BBwOggfEwge4CAQAxgbMwgbACAQAwWjBCMQswCQYDVQQGEwJV SzEVMBMGA1UEBwwMRGVmYXVsdCBDaXR5MRwwGgYDVQQKDBNEZWZhdWx0IENvbXBh bnkgTHRkAhQyVQALVy3sHpvGTe7VPm6PcIg5TjANBgkqhkiG9w0BAQEFAARA4MXJ EC+4MXAnBSecyPrxE5RZJolNA2/HlDMOUsdEO5hiE/+MhSsSpFGPuBpK0JpAZLsr xcynCb+dsbSDknXTjTAzBgkqhkiG9w0BBwEwFAYIKoZIhvcNAwcECKaj2PbEG1LC gBC8En0uWh/TiXwTeteFv8g3
The certificate file (mycert.pem) contains both the private key and the certificate:
-----BEGIN CERTIFICATE----- MIIB2zCCAYWgAwIBAgIUMlUAC1ct7B6bxk3u1T5uj3CIOU4wDQYJKoZIhvcNAQEL BQAwQjELMAkGA1UEBhMCVUsxFTATBgNVBAcMDERlZmF1bHQgQ2l0eTEcMBoGA1UE CgwTRGVmYXVsdCBDb21wYW55IEx0ZDAeFw0yMjA1MzAxNTAzMjNaFw0yMzA1MzAx NTAzMjNaMEIxCzAJBgNVBAYTAlVLMRUwEwYDVQQHDAxEZWZhdWx0IENpdHkxHDAa BgNVBAoME0RlZmF1bHQgQ29tcGFueSBMdGQwXDANBgkqhkiG9w0BAQEFAANLADBI AkEA470jy23UaCP2sHtHiyqZ1B5Qz6XjYN9oz4GtdlFKOzreaIXceRUsuDwwoivq 4BYh5OGgVUsKNVC7Pq8y0BX7cwIDAQABo1MwUTAdBgNVHQ4EFgQUsfimU11L33el a+ZBqCIHNz5S/x0wHwYDVR0jBBgwFoAUsfimU11L33ela+ZBqCIHNz5S/x0wDwYD VR0TAQH/BAUwAwEB/zANBgkqhkiG9w0BAQsFAANBAF/vBmqe0IpCEzxGVFjODV96 gfnik2pacjBKs5x0XaFQHqOKW4zkD0wkSaygRrI3YCPW7+h42671ebCqaTbzlcY= -----END CERTIFICATE-----
This is created using a 512-bit RSA key, and where we produce a key pair file (key.pem) and a certificate:
openssl req -newkey rsa:512 -nodes -x509 -days 365 -keyout key.pem -out mycert2.pem