> On Mar 28, 2018, at 12:46 PM, Michael Sierchio <kudzu@xxxxxxxxxxxx> wrote: > > It would make more sense, but you're changing the problem definition. Needham-Schroeder is intended to be used over an insecure network. I'm guessing that C's purpose is issuance of client credentials. If the requirement is to avoid PKI, then TLS is not the protocol one wants to use. Use GSSAPI, say via libknc: https://github.com/elric1/knc/tree/master/lib -- Viktor. -- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users