9
edits
Talk:UDP API DEV: Difference between revisions
→Encryption
Epoximator (talk | contribs) |
|||
| Line 24: | Line 24: | ||
And the main reason for this feature is the usage of clients over untrusted connections. Which is possible once you configured your client password via a trusted connection. | And the main reason for this feature is the usage of clients over untrusted connections. Which is possible once you configured your client password via a trusted connection. | ||
--[[User:Exp|Exp]] 06:58, 27 January 2006 (CET) | --[[User:Exp|Exp]] 06:58, 27 January 2006 (CET) | ||
The encryption specified in the protocol is poorly defined. AES is just a cipher, not a protocol; there are critical details missing, like the type of chaining being done; if its being used in stream or block mode; how replay prevention and other Mallory attacks are to be prevented; etc. Consider using an existing, well-understood crypto protocol. TLS comes to mind. [[User:Derobert|Derobert]] 02:22, 28 January 2006 (CET) | |||