On 06/23/2011 02:14 AM, florent ainardi wrote: > >>> and the same thing for a file >>> but i don't how to start >>> i use polarssl library and the api doc is very simple >>> please help using the NSS library from mozilla >>> regards all > hello bob > thanks for replying > but i had to implement in a simple program the aes cipher algo, > doesn't matter the way of how i give the key, it's not the priority > my priority first is to show to my boss how can i implement the aes > from mozilla libs in a simple way Huh? You cannot implement aes without a key using nss, polarssl, or any other library. Even a test proof of concept, you need to get the key from somewhere (even if it's compiled into your program). If you want to do anything *useful* with AES, you need to solve the key problem.
So I repeat my question: Where (even in your test program) are you getting your key? > and after that we start thinking about the key > if you have sample of code in C to implement the aes algorithm i am > interrested in That may be best. It would certainly answer my key question.. One note about NSS philosophy. We try to make it easy to do crypto correctly and safely. We try to make it hard to do crypto in an insecure way (you can do it, but we make you jump through hoops). If you are having problems, it's likely you are on a path that is fraught with danger. Not thinking about keys first is a good way to get yourself in trouble. It would be even better if you chose a higher level algorithm do help you do your work. For instance, if you are trying to exchange encrypted data across some channel, then just use SSL. If you are trying to save some encrypted data to be decrypted at a later data, then CMS is a better way to go. bob > regards
-- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
