I would like to use gRPC for IoT device - server communication with mutual authentication TLS, but one of requirements is to use external secure key storage. IoT device has separate cyrptoprocessor with key storage and provides it's own TLS library (C++) which we have to use and on the server side we use 3rd party TLS library (.NET) that can work with external HSM for crypto functions.
Is there a way to ditch BoringSSL from gRPC and use our own TLS library? What gRPC core library changes would be needed? Is it even worth doing or should I forget about using gRPC in my case?
Related
I have a query regarding the TLS layer implementation above the LWIP TCP
stack . We have used the Netconn API to establish the TCP connection .Is
there any examples where Netconn API is replaced with altcp (application
layered TCP connection API) for the reference purpose .We have used
FreeRTOS in our project so we need to use Netconn API as it is thread safe.
In the connection layer of mbedTLS and LWIP TCP stack can we use this
Netconn API .We also need our device to communicate with cloud using MQTT with mutual authentication. Any information regarding this is highly appreciated.
Regards,
Fabin
In browser side i am using paho client and server is Activemq. What i found is that paho JS client has very limited set of features but java client has lots of feature.
Some feature that i want is Message delivery confirmation, message time etc. how can i get all these kind of feature in browser side client or what should be a common architecture of MQTT chat applictaion for these features. Shall i do separate Java api call for getting these kind of features ?
Both the Java and the Javascript both have callbacks for onMessageDelivered
And MQTT has no fields for a timestamp, so I'm not sure where you've seen Message Time
I have a 3-tier application where server is Windows service and client connects to it using WCF. I need to provide some integration with 3-d party application. For this I plan to implement separate integration service and host it with WCF. But one of most important requirements is to use SSL v.3.0 CipherSuite - SSL_RSA_WITH_AES_128_CBC_SHA to secure connection between server and 3-d party application.
My question is: how to configure my WCF service to enable SSL v.3.0 CipherSuite - SSL_RSA_WITH_AES_128_CBC_SHA?
I wish to write a small IM client. If you can also provide links to some literature/sample code that would be great.
If you're writing native code, you're probably going to want to look at SSPI and specifially SChannel:
The Schannel security package provides access to four security protocols:
Transport Layer Security (TLS 1.2)
Transport Layer Security (TLS 1.1)
Transport Layer Security (TLS 1.0)
Secure Sockets Layer (SSL 3.0)
Secure Sockets Layer (SSL 2.0)
Let's ignore for the moment that they can't count :-)
Depending on the language / platform (.NET, Win32 API etc.) there are several options available.
SChannel has been mentioned above. Then you can use OpenSSL. Also depending on your platform you can use our SSLBlackbox.
How can we implement client side SSL in J2ME?
Any available resource or source code??
I want to validate the particular service is accessed by a particular phone.
The bouncycastle Java libraries have a J2ME version (now called JME) that includes an SSL/TLS api.