Re: I need some feedback
Re: I need some feedback
- Subject: Re: I need some feedback
- From: Jens Alfke <email@hidden>
- Date: Fri, 18 Jan 2019 09:30:13 -0800
> On Jan 17, 2019, at 12:26 AM, Quinn The Eskimo! <email@hidden> wrote:
>
> Finally, a question: Is there a reason you’re doing your own encryption
> rather than using TLS? Creating your own on-the-wire crypto is very tricky,
> and it’s something best left to the experts.
+1. This is fraught with peril. When working directly with ciphers it’s easy to
make mistakes in design that can render your encryption trivially breakable.
Then there’s the higher-level problem of key exchange — how do the sender &
recipient agree on a secret key before the data transfer?
If you go this route, I recommend using libSodium, an open-source
batteries-included crypto library that provides high-level mechanisms for
common tasks, instead of making you assemble them out of primitives. You get
less choice of algorithms, but you do get the assurance that the functionality
is correctly designed and implemented.
—Jens
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macnetworkprog mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden