Can You Recommend a Crypto Library?
- From: Larry Lindstrom <nobody@xxxxxxxxxxx>
- Date: Fri, 16 Jun 2006 13:43:35 -0700
I've gone through MP3 lectures and PDF slides of the
online crypto course from University of Washington.
The course can be found at:
I'd recommend it to anyone as clueless on all things
crypto as I was two weeks ago.
I'm no mathematician, so much of the course detail
was over my head, but I believe I now have an appreciation
of how the pieces fit.
I need to select a crypto library for my Windows C++
I described this application a couple of weeks ago,
but let me do so again.
The application's database contains personal
information, names, addresses, phone numbers and birth
dates. Customers may demand financial information like
Social Security and credit card numbers in future
versions of the program.
This database may live on a Unix server or be embedded
on the Windows PC that is running the app. This PC may be
You know more about threats to data than I do, but
the theft of a laptop with this personal information is
high on the list. Some users of this app may not want to
share information with their co-workers.
I'll want PKI so at some point in the future so the app
can allow people who's records are in the database to
keep their personal information current in the database.
This may be handled by a browser running SSL, or a client
app of my own design.
People represented in the database will have face to
face contact with the people who manage the database, so
there will be opportunities for people to confirm their
Currently I envision the crypto being handled on the
Windows PC, and the Unix server just keeping and passing
encrypted data. This might change in the future.
I've downloaded Crypto++. It's recognized by VC6 as
a project, and compiles easily, but with one type of
warning I'm not sure about.
LibTomCrypt also compiled, from the command line,
with a few innocuous sounding warnings. Tom is a regular
poster to this newsgroup, which seems like a big plus.
Google searches of sci.crypt don't turn up much
discussion about Microsoft's CryptoAPI. What do people
think of it?
I've also found references to a library called
BeeCrypt. But I don't see much about it.
I've downloaded GPG4Windows, but GPGME, which I
believe is the API for GNU Privacy Guard, won't
compile on my Solaris PC, so I don't see much hope of
porting it to Windows.
So, I'd appreciate some recommendations on which
library I should use to get encryption, the last part
of this project, going.