tls: Add initial ideas about TLS in the client/server

Change-Id: I63a8cea776e57dce747a357c40f9caa0a9e2d3b5
author: Holger Hans Peter Freyther <holger@moiji-mobile.com> 2016-08-16 17:15:15 +0200
committer: Holger Hans Peter Freyther <holger@moiji-mobile.com> 2016-09-08 15:48:02 +0200
commit: 3d439d0d08ecc286ce4547add44ea01a043e0be9 (patch)
tree: ad794b159b65e7d4eb006e1eb01abfe5c54e6883
parent: 0b4b824887db23fb3b922286c3229be75393a92d (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/TLS_TODO b/TLS_TODO
new file mode 100644
index 0000000..501f2a1
--- /dev/null
+++ b/TLS_TODO
@@ -0,0 +1,16 @@
+= Goals
+
+Secure communication between client and server. The captured
+data might go through different interfaces than the one used
+for capturing.
+
+Instead of rolling a custom protocol the idea is to adopt TLS
+1.2 to achieve client authentication and ciphering.
+
+Neither the client nor the server should block during the key
+exchange. Most TLS implementations do block and this is a problem
+for a single threaded server. Ideally the same library is used
+in the client and the server.
+
+In practice libraries might block during the handshake and this
+is a big deal for the server (other clients block).
author	Holger Hans Peter Freyther <holger@moiji-mobile.com>	2016-08-16 17:15:15 +0200
committer	Holger Hans Peter Freyther <holger@moiji-mobile.com>	2016-09-08 15:48:02 +0200
commit	3d439d0d08ecc286ce4547add44ea01a043e0be9 (patch)
tree	ad794b159b65e7d4eb006e1eb01abfe5c54e6883
parent	0b4b824887db23fb3b922286c3229be75393a92d (diff)