Dear iotivity-dev list, searching in the web about the usage of CoAP for cloud scenarios, I stumbled over your wiki https://wiki.iotivity.org/coapnativecloud. Generally I appreciate the most on that page. But on one point, the usage of "coap over tcp" instead of "coap over dtls", I would like to add some more information about the recent development in DTLS of the last months.
Using DTLS 1.2 in cloud scenarios was a pain for long time. With NATs in between, DTLS connections/peers-associations expired frequently after a few seconds of quiet. With the introduction of a DTLS connection ID, this has changed. The IETF TLS working-group has released the 4th draft in the meantime (see https://datatracker.ietf.org/doc/draft-ietf-tls-dtls-connection-id) and, if no objection was raised, the TLS group will assign early code-point for the values of that draft. The eclipse java open source project californium (I’m one of the committers of this project) offers now since several weeks a first implementation and we even managed to provide a basic demonstration setup for a stateless load-balancer for DTL 1.2 using that connection ID (see https://github.com/eclipse/californium/wiki/DTLS-1.2-connection-ID-based-load-balancer). So, may be you analyze again, if using "coap over DTLS" would not make sense. From my view point, no other technique is able to provide a high efficient, encrypted, mostly stateless, cloud-cluster-prepared communication infrastructure. Not all components are “ready for production” especially the demonstration load-balancer only demonstrates the functionality. But that may be a part, where a Linux Foundation Collaborative Project is much more closer to than a java library. Best regards Achim Kraus -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#10205): https://lists.iotivity.org/g/iotivity-dev/message/10205 Mute This Topic: https://lists.iotivity.org/mt/31188187/21656 Group Owner: iotivity-dev+ow...@lists.iotivity.org Unsubscribe: https://lists.iotivity.org/g/iotivity-dev/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
