Secure Programming Cookbook for C and C++: Recipes for Cryptography, Authentication, Input Validation & More

Obcode library 

obcode_init( ) 

obit_get( ) 

obit_set( ) 

OCB (Offset Codebook) mode 

OCSP (Online Certificate Status Protocol) 

    chain responders 

    checking revocation status using OpenSSL 

    error codes for responder queries 

    responder result codes 

OCSPSigning bit 

OFB (Output Feedback) mode  2nd 

    block cipher setup, OpenSSL 

    high-level API 

    initialization 

    parallelization issues 

    PKCS#11 compliance 

    precomputing keystream for 

    SPC_OFB_CTX data type 

OMAC 

    AES specification 

    nonces, using with 

OMAC1 and OMAC2 

one-time pads 

one-time password systems 

one-time values used in cryptography 

Online Certificate Status Protocol  [See OCSP]

open( ) 

    filesystem support of O_EXCL flag 

OpenProcessToken( )  2nd 

OpenSSL 

    additional cipher setup 

    arbitrary precision math library 

    BIGNUM  [See BIGNUM library]

    BIO objects 

    block cipher implementations 

    block ciphers, setup in 

    Blowfish, 256-bit version in CBC mode 

    building certificate signing requests (CSRs) 

    certificate authorities, operation using 

    certificate status, checking via OCSP 

    certificate verification of an SSL peer 

    cipher configuration properties, querying 

    clients, creating 

    configurable cipher parameters 

    decryption using RSA private keys 

    DER encoding API 

    Diffie-Hellman protocol generator value 

    digital signature support 

    disabling CBC mode cipher padding 

    disentangling public and private keys 

    DSA implementation 

        signature precomputation 

    encryption phases 

    encryption using an RSA public key 

    entropy gathering from keyboards under Unix 

    EVP interface 

    generating public and private keys 

    hash functions 

        EVP API 

        recommended 

        summary 

    HMAC implementation 

    home page 

    low-level encryption and decryption using 

    message authentication via HMAC 

    PEM API 

        BIO and FILE objects 

        supported encryption algorithms 

    random number API, using 

        /dev/urandom, reliance on 

        seeding the generator 

    root certificates, obtaining with 

    spc_md5_encrypt( ) 

    Stunnel and 

    variable key-length ciphers, using in 

    X.509 certificate verification using 

OpenSSL_add_all_algorithms( ) 

OpenSSL_add_all_ciphers( ) 

OpenThreadToken( )  2nd  3rd 

operating systems as sources of entropy 

OPIE 

outlen, input to spc_words2bin( ) 

overlong sequences