-
Notifications
You must be signed in to change notification settings - Fork 148
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
PSK support #983
Labels
Comments
Merged
Hopefully we are still looking into using noise. I think coming up with some PSK scheme should be doable. We don't need to go to TLS for this... |
The point is to avoid double encryption, which using TLS would allow us to do. If we do go to noise, it is very easy, as it has builtin PSK support.. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In order to have secure authentication for connections, and allow creating things like private networks, we need some form of pre shared key encryption support.
Using https://datatracker.ietf.org/doc/html/rfc8773 we should be able to add pre shared key support on a network level.
Before we can use this, we need support for this in rustls: rustls/rustls#174
Looking at the comments in the linked rustls issue, we might be able to use an even more rustls native approach. This needs more design & review of RFCs and implementation.s
The text was updated successfully, but these errors were encountered: