[Cryptography] Is it time for a revolution to replace TLS?
Guus Sliepen
guus at sliepen.org
Sat Apr 26 00:47:36 EDT 2014
On Fri, Apr 25, 2014 at 04:47:58PM -0400, Salz, Rich wrote:
> > For tinc (a VPN daemon), I've been working on a simplified version of TLS[1], that is specifically targeted at peer-to-peer communication, where both peers have each other's public key beforehand. This removes the whole X.509 certificate mess from the protocol
>
> How does it differ from SSH, and why?
It doesn't differ much from SSH after you remove all the cipher suite
negotiation and all but the public key authentication methods from that.
--
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus at sliepen.org>
More information about the cryptography
mailing list