[gnutls-devel] GnuTLS | Feature request: CMS (PKCS#7) encryption (enveloped and authenveloped data) in `certtool` (#1185)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Tue Feb 23 19:52:08 CET 2021



Daniel Kahn Gillmor created an issue: https://gitlab.com/gnutls/gnutls/-/issues/1185



## Description of the feature:

`certtool` currently supports creation of PKCS#7-style signatures.  It would be great if it could also offer PKCS#7-style encryption and decryption.  In its modern form, this is lumped under [Cryptographic Message Syntax](https://tools.ietf.org/html/rfc5652), and is used in S/MIME [EnvelopedData](https://tools.ietf.org/html/rfc8551#section-3.3) or [AuthEnvelopedData](https://tools.ietf.org/html/rfc8551#section-3.4) parts.

## Applications that this feature may be relevant to:

S/MIME e-mail and other messaging clients may use encryption to protect messages.

## Is this feature implemented in other libraries (and which)

`gpgsm` from the GnuPG project offers some flavors of CMS.  OpenSSL offers some as well, in particular the library functions `SMIME_{read,write}_{CMS,PKCS7}` and `{CMS,PKCS7}_{en,de}crypt`.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1185
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20210223/77bfc10a/attachment.html>


More information about the Gnutls-devel mailing list