[zeromq-dev] Encryption (OpenSSL/TLS)

Oliver Smith oliver at kfs.org
Fri Oct 1 19:16:18 CEST 2010


  Pieter Hintjens said the following on 10/1/2010 3:17 AM:
> Do we need to stretch an encrypted connection over arbitrary devices?
> I'm not sure that's the real use case.  What I see is that unsecured
> 0MQ networks need encryption at the edges, where they speak to
> external clients.
Exactly - but as Matt points out, it needs to be made blaringly clear 
that this is for when ZeroMQ is operating as a networking API and not as 
a parallelism API.

TLS would seem to work really well for this because - like ZeroMQ - it 
provides an endpoint replacement system (instead of a FILE* you use a 
BIO* or something, in the 2 days since I looked at it my brain has 
"recovered" from the experience by eliminating almost all traces ;)

- Oliver




More information about the zeromq-dev mailing list