diff options
authorHolger Hans Peter Freyther <holger@moiji-mobile.com>2016-08-16 17:15:15 +0200
committerHolger Hans Peter Freyther <holger@moiji-mobile.com>2016-09-08 15:48:02 +0200
commit3d439d0d08ecc286ce4547add44ea01a043e0be9 (patch)
parent0b4b824887db23fb3b922286c3229be75393a92d (diff)
tls: Add initial ideas about TLS in the client/server
1 files changed, 16 insertions, 0 deletions
diff --git a/TLS_TODO b/TLS_TODO
new file mode 100644
index 0000000..501f2a1
--- /dev/null
+++ b/TLS_TODO
@@ -0,0 +1,16 @@
+= Goals
+Secure communication between client and server. The captured
+data might go through different interfaces than the one used
+for capturing.
+Instead of rolling a custom protocol the idea is to adopt TLS
+1.2 to achieve client authentication and ciphering.
+Neither the client nor the server should block during the key
+exchange. Most TLS implementations do block and this is a problem
+for a single threaded server. Ideally the same library is used
+in the client and the server.
+In practice libraries might block during the handshake and this
+is a big deal for the server (other clients block).