[zeromq-dev] Encryption (OpenSSL/TLS)
Oliver Smith
oliver at kfs.org
Fri Oct 1 21:06:14 CEST 2010
Martin Sustrik said the following on 10/1/2010 1:03 PM:
> You've got me wrong. I was not objecting against SSL. What I said was
> that the message level encryption would have to be implemented later on
> anyway, so we'll do the work twice.
Can I suggest that this is actually true both as you describe/ and/
because of the duality of ZeroMQ (Parallelism/Networking). I'm not
talking about people being lazy and wanting to use one listener for both
purposes (which I would probably be guilty of, but I do not deign to
defend or use as a rationale for a decision on this issue) but for
situations where developers use ZeroMQ across a large project for both
purposes for convenience. So where they use 0MQ for performance message
passing/parallelism within their server fabric and may need
message-level encryption for intra-site communications and
internal-attack prevention, they would probably prefer TLS encryption
for edge communications, and tunneling may not be an option if those
edge communications are end-user facing.
- Oliver
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.zeromq.org/pipermail/zeromq-dev/attachments/20101001/c5325e95/attachment.htm>
More information about the zeromq-dev
mailing list