Solved

POCO C++ Encryption SSL

Posted on 2011-02-17
3
2,208 Views
Last Modified: 2012-06-27
I am implementing an application that is expected to send/receive user authentication info to a remote server. Planning to use POCO library for encryption. I am very new to this kind of C++ application. I see POCO Library (C++ library by Applied Informatics) provides cryptographic hash functions including MD2, MD3, MD5. Also, POCO provides NetSSL for secured communications. I am trying to figure if I can secure the communication of usernames and passwords simply by using the cryptographic hash functions in a static library or simply by using secured sockets or by using both. What are the pros and cons of each method? What are the generic requirements for each method (digital certification server, etc). Assume little to zero exposure to Socket Programming or Encryption.
0
Comment
Question by:olmuser
3 Comments
 
LVL 86

Assisted Solution

by:jkr
jkr earned 50 total points
ID: 34919883
I'd rather like to point you to boost's SSL support, as it's quite straightfoward and will save you a lot of both your time and scalp hair:

http://www.boost.org/doc/libs/1_36_0/doc/html/boost_asio/overview/ssl.html
http://www.boost.org/doc/libs/1_40_0/doc/html/boost_asio/example/ssl/client.cpp
http://www.boost.org/doc/libs/1_40_0/doc/html/boost_asio/example/ssl/server.cpp

The remaining headache will come from the SSL certificate thing, yet that's nicely described at http://devsec.org/info/ssl-cert.html ("Simple SSL cert HOWTO")
0
 
LVL 1

Author Comment

by:olmuser
ID: 34920531
Sorry I have to use POCO...
0
 
LVL 12

Accepted Solution

by:
trinitrotoluene earned 450 total points
ID: 34924111
Well its usually a combination of both. A secure communication channel is established for encrypted communication.

If you want to make a start then what better place than

http://en.wikipedia.org/wiki/Secure_Sockets_Layer
http://en.wikipedia.org/wiki/Encryption

Also look around in Experts Exchange
http://www.experts-exchange.com/Security/Encryption/
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

#SSL #TLS #Citrix #HTTPS #PKI #Compliance #Certificate #Encryption #StoreFront #Web Interface #Citrix XenApp
Many companies are looking to get out of the datacenter business and to services like Microsoft Azure to provide Infrastructure as a Service (IaaS) solutions for legacy client server workloads, rather than continuing to make capital investments in h…
The goal of the video will be to teach the user the concept of local variables and scope. An example of a locally defined variable will be given as well as an explanation of what scope is in C++. The local variable and concept of scope will be relat…
The viewer will learn how to user default arguments when defining functions. This method of defining functions will be contrasted with the non-default-argument of defining functions.

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now