[zeromq-dev] Encryption (OpenSSL/TLS)

Oliver Smith oliver at kfs.org
Fri Oct 1 21:06:14 CEST 2010


  Martin Sustrik said the following on 10/1/2010 1:03 PM:
> You've got me wrong. I was not objecting against SSL. What I said was
> that the message level encryption would have to be implemented later on
> anyway, so we'll do the work twice.
Can I suggest that this is actually true both as you describe/ and/ 
because of the duality of ZeroMQ (Parallelism/Networking). I'm not 
talking about people being lazy and wanting to use one listener for both 
purposes (which I would probably be guilty of, but I do not deign to 
defend or use as a rationale for a decision on this issue) but for 
situations where developers use ZeroMQ across a large project for both 
purposes for convenience. So where they use 0MQ for performance message 
passing/parallelism within their server fabric and may need 
message-level encryption for intra-site communications and 
internal-attack prevention, they would probably prefer TLS encryption 
for edge communications, and tunneling may not be an option if those 
edge communications are end-user facing.

- Oliver

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.zeromq.org/pipermail/zeromq-dev/attachments/20101001/c5325e95/attachment.htm>


More information about the zeromq-dev mailing list