OpenSSL without certificate

I want to write a small client/server application which make use of OpenSSL for Data Crypting.

Is there any way to do this without certificates?

My case is that i cant share certificates... thats mean i need to connect and Handshake without a certificate. How Can i do this?

Regards woigl
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

> Is there any way to do this without certificates?

> ..  that i cant share certificates..
why would you share certificates?
woiglAuthor Commented:
I want to write a server for configuration purpose and this server allow other clients to connect, but the clients dont have a private key...
woiglAuthor Commented:
Or is it better in this way to work with normal TCP Sockets and crypt the message before sending with MD5?
SolarWinds® IP Control Bundle (IPCB)

Combines SolarWinds IP Address Manager and User Device Tracker to help detect IP conflicts, quickly identify affected systems, and help your team take near instantaneous action. Help improve visibility and enhance reliability with SolarWinds IP Control Bundle.

> but the clients dont have a private key...
you don't need a private key for SSL/TLS (https)

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Well normal / usual way would be to use SSL i.e. https

You could by a cheap SSLÖ certificate or use openssl to create a private certificate and use it for data encryption:



woiglAuthor Commented:
but as far as i could find out, there is a possibility to receive to certificate from the peer...

Anyone know this?
Yes of cause.

With TLS you can use a certificate on the server side AND from the client side.

That way even the server can be "sure" to talk to the authorized person.

SSL/TLS provides endpoint authentication and communications privacy over the Internet using cryptography. In typical use, only the server is authenticated (i.e. its identity is ensured) while the client remains unauthenticated; mutual authentication requires public key infrastructure (or PKI) deployment to clients. The protocols allow client/server applications to communicate in a way designed to prevent eavesdropping, tampering, and message forgery....

woiglAuthor Commented:
Thats mean my client dont need a certificate because it will receive it from the server side...

which certificate is good? x509

or is there any certificate which dont need a Country and State information?
Please check

The GNU Transport Layer Security Library for further details.

It will explain most of your questions.

It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.