[Cryptography] Why aren't we using SSH for everything?
Nico Williams
nico at cryptonector.com
Mon Jan 5 15:07:33 EST 2015
On Jan 5, 2015 10:59 AM, "Salz, Rich" <rsalz at akamai.com> wrote:
>
> > Exactly. Security must be easier than OpenSSL's API, much, *much*
easier.
>
> Perhaps it's time to get the interested parties together and collaborate
on this? I can reach out to the various parties I know of and kick off a
mailing list...
I cannot contribute source code at this time, but otherwise I'd be happy to
participate. I can contribute API design ideas for dealing with the
complexity of naming (ideas that have been around for a while and partially
implemented). If it snowballs i can then consider contributing source code.
There was a discussion (in a review of the PKCS#11 UTI I-D) just says ago
on the ietf at ietf.org and saag lists about the role of the IETF in
networking-related APIs. It is my view that some Internet protocols (among
them IPsec and TLS, but maybe not so much SSHv2) should include abstract
APIs or discussion of API patterns for them. At some point we ought to
have a more substantial discussion about this complete with an I-D to
address this much like we do security considerations.
Nico
--
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20150105/13b5cbe2/attachment.html>
More information about the cryptography
mailing list