> On Jan 17, 2019, at 12:26 AM, Quinn The Eskimo! <eski...@apple.com> wrote: > > Finally, a question: Is there a reason you’re doing your own encryption > rather than using TLS? Creating your own on-the-wire crypto is very tricky, > and it’s something best left to the experts.
+1. This is fraught with peril. When working directly with ciphers it’s easy to make mistakes in design that can render your encryption trivially breakable. Then there’s the higher-level problem of key exchange — how do the sender & recipient agree on a secret key before the data transfer? If you go this route, I recommend using libSodium, an open-source batteries-included crypto library that provides high-level mechanisms for common tasks, instead of making you assemble them out of primitives. You get less choice of algorithms, but you do get the assurance that the functionality is correctly designed and implemented. —Jens
_______________________________________________ Do not post admin requests to the list. They will be ignored. Macnetworkprog mailing list (Macnetworkprog@lists.apple.com) Help/Unsubscribe/Update your Subscription: https://lists.apple.com/mailman/options/macnetworkprog/archive%40mail-archive.com This email sent to arch...@mail-archive.com
