On 2018-09-16 09:49, Steffan Karger wrote:
Hi,
[..]
Both are fine. Good random is indeed important ECDHE-ECDSA, but only
marginally less so for ECDHE-RSA. Both ECDHE (the ephemeral key
exchange) and the OpenVPN protocol itself need good random to generate
ephemeral keys too.
Thanks for your reply.
We eventually changed approach in the big picture and will not be using
AWS IoT anymore, so I don't need to implement it as initially planned.
Prior to that direction change I made some preliminary tests and it
seems shared certificates could work. Just writing here FTR.
[..]
Bye.
--
Samuele Catusian
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
