-
Notifications
You must be signed in to change notification settings - Fork 136
Encryption Scheme #43
Comments
Yes, there are significant advantages. Basically, SSL/TLS have a variety of ciphers that they may use in any given session. This has the advantage of providing compatibility with a wider range of clients. It has two major downsides:
Since we don't need to support client diversity, there's no advantage to SSL/TLS over the encryption we do use. And by only supporting RSA/AES, it significantly decreases the memory overhead (which means we can run on a processor with 20KB of RAM, which would not be possible with SSL/TLS). In addition, it is potentially more secure, because we are not supporting ciphers that might be determined to be insecure. |
Thanks for your answer. |
The device holds its own private key while the server holds the public key as per normal security model. In additional, communication with the server requires the use of the server public key stored in the device. |
add getVar, fix some flow
I hava a question about the encryption scheme spark used (RSA&AES) , why not SSL/TLS, are there some advantages?
The text was updated successfully, but these errors were encountered: