Home > General Development > Secure programming with the OpenSSL API

Secure programming with the OpenSSL API

General Development 5 Comments

Learning how to use the API for OpenSSL — the best-known open library for secure communication — can be intimidating, because the documentation is incomplete. Fill in the gaps, and tame the API, with the tips in this article. After setting up a basic connection, see how to use OpenSSL’s BIO library to set up both a secured and unsecured connection. And learn a bit about error detection as well.

About The Author

Eugenia Loli

Ex-programmer, ex-editor in chief at OSNews.com, now a visual artist/filmmaker.

Follow me on Twitter @EugeniaLoli

5 Comments

  1. 2004-07-29 11:24 pm
    Anonymous

    SUNXACML, an opensource library for XACML just released last week.

    http://sunxacml.sourceforge.net/

    OASIS XACML — eXtensible Access Control Markup Language

    http://www.oasis-open.org/committees/xacml/repository/cs-xacml-spec

  2. 2004-07-30 12:07 am
    Anonymous

    No new info here, this article serves to only summerise and

    rehash the Oreilly OpenSSL book. Hint to budding authors, don’t try to get credit by publishing article on the net that are a blatent ripoff of an already published book.

  3. 2004-07-30 1:56 am
    Anonymous

    Thanks for posting the article. I’m just dipping my toes into this stuff, and besides the nice intro, looks like there’s some useful links at the bottom of the article too.

  4. 2004-07-30 2:58 pm
    Anonymous

    The code there is not enough to be secure, it doesn’t seem to check the certificate constraints so it’s vulnerable to man in the middle attacks.

  5. 2004-07-30 4:47 pm
    Anonymous

    Uh, no kidding. It says that in the article. Not to mention that it doesn’t cover important topics like “sending data” over our newfound SSL connection.