[cap-talk] End to end encryption (was: network level ...)
Stephen J. Bevan
stephen at dino.dnsalias.com
Thu Jun 22 09:12:40 EDT 2006
Ian G writes:
> The right way to do it IMO is to do end-to-end with
> your own protocol, integrated into the app, with
> your own security requirements. ...
[snip]
> Yep. To cross over to capabilities, it would suggest
> that any capabilities implementation should implement
> its own.
I come at it from the opposite direction and would say that an
application should only implement its own if the authors have a
convincing argument that the protocol is superior to using
ESP&IKEv2[1] or TLS if they can assume TCP.
--------------------------
[1] Implemented in the application if one does not want to rely on
them being available in the OS.
More information about the cap-talk
mailing list