Skip to content
This repository has been archived by the owner on Nov 30, 2023. It is now read-only.

TLS / SSL options for Helios over TCP #42

Open
Aaronontheweb opened this issue Jul 1, 2015 · 1 comment
Open

TLS / SSL options for Helios over TCP #42

Aaronontheweb opened this issue Jul 1, 2015 · 1 comment

Comments

@Aaronontheweb
Copy link
Member

Reviewing some options for bringing TLS / SSL support to TCP sockets for Helios 2.0.

The implementations thus far look like:

  1. SslStream upon accept / connect for inbound / outbound sockets. Could be implemented as a IChannelHandler that operates at the stage closest to the socket, or could be an implementation detail of the ITransport itself. Looks like SslStream will still work with asynchronous socket operations.
  2. Use Bouncy Castle's third party libraries for implementing TLS; there's not a lot of documentation for the libraries in C# (it's the Java ones by the same project that are most popular) but it looks like they depend on OpenSSL for some of the keystore work underneath the hood. The downside of this option is that, well, it's a third-party library we have to depend on it and we can't really say how well it works. Upside is that it supports DTLS, which would give us a security option for UDP.
@Aaronontheweb
Copy link
Member Author

Source for Bouncy Castle latest: https://github.com/bcgit/bc-csharp

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Projects
None yet
Development

No branches or pull requests

1 participant