Solved

POCO C++ Encryption SSL

Posted on 2011-02-17
3
2,242 Views
Last Modified: 2012-06-27
I am implementing an application that is expected to send/receive user authentication info to a remote server. Planning to use POCO library for encryption. I am very new to this kind of C++ application. I see POCO Library (C++ library by Applied Informatics) provides cryptographic hash functions including MD2, MD3, MD5. Also, POCO provides NetSSL for secured communications. I am trying to figure if I can secure the communication of usernames and passwords simply by using the cryptographic hash functions in a static library or simply by using secured sockets or by using both. What are the pros and cons of each method? What are the generic requirements for each method (digital certification server, etc). Assume little to zero exposure to Socket Programming or Encryption.
0
Comment
Question by:olmuser
3 Comments
 
LVL 86

Assisted Solution

by:jkr
jkr earned 50 total points
ID: 34919883
I'd rather like to point you to boost's SSL support, as it's quite straightfoward and will save you a lot of both your time and scalp hair:

http://www.boost.org/doc/libs/1_36_0/doc/html/boost_asio/overview/ssl.html
http://www.boost.org/doc/libs/1_40_0/doc/html/boost_asio/example/ssl/client.cpp
http://www.boost.org/doc/libs/1_40_0/doc/html/boost_asio/example/ssl/server.cpp

The remaining headache will come from the SSL certificate thing, yet that's nicely described at http://devsec.org/info/ssl-cert.html ("Simple SSL cert HOWTO")
0
 
LVL 1

Author Comment

by:olmuser
ID: 34920531
Sorry I have to use POCO...
0
 
LVL 12

Accepted Solution

by:
trinitrotoluene earned 450 total points
ID: 34924111
Well its usually a combination of both. A secure communication channel is established for encrypted communication.

If you want to make a start then what better place than

http://en.wikipedia.org/wiki/Secure_Sockets_Layer
http://en.wikipedia.org/wiki/Encryption

Also look around in Experts Exchange
http://www.experts-exchange.com/Security/Encryption/
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

You cannot be 100% sure that you can protect your organization against crypto ransomware but you can lower down the risk and impact of the infection.
Encryption for Business Encryption (https://en.wikipedia.org/wiki/Encryption) ensures the safety of our data when sending emails. In most cases, to read an encrypted email you must enter a secret key that will enable you to decrypt the email. T…
The viewer will learn additional member functions of the vector class. Specifically, the capacity and swap member functions will be introduced.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now