RE: transport layer question

[Jon Sjoberg]

Albert,

 

SSL can run over ANY reliable transport layer (IP or not).

 

Making UDP reliable, with out all the overhead and performance implications of TCP, is possible and in a few instances desirable.

 

Hope this helps,

Jon

 

-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Albert Serra
Sent: Friday, August 11, 2000 8:52 AM
To: [EMAIL PROTECTED]
Subject: Re: transport layer question

So,

- Is it possible to use OpenSSL on top of RTSP, or UDP? as there has been contradictory answers.
- If it is possible, what you have to modify from the Openssl C code?
- The specifications what they pretend to mean, that it is possible if the transport protocol is reliable.
If you'd read the SSL or TLS specs, you would have seen these:

The SSL spec says in section 3:

"At the lowest level, layered on top of some reliable transport protocol
(e.g., TCP), is the SSL Record Protocol".

The TLS spec says in section 1:

"At the lowest level, layered on top of some reliable
transport protocol (e.g., TCP[TCP]), is the TLS Record Protocol

Thanks again

Ciao

Albert
 
 

Rich Salz wrote:

> run SSL over UDP, with a layer that provides reliable delivery.
> Of course that's duplicating the functionality of TCP, but
> people reinvent the wheel all the time...

But there are times when it is quite appropriate to build a guaranteed
delivery protocol on top of UDP.  RPC systems are a good example.  In
particular, if you have a heavily-loaded server and can avoid IP
fragmentation, UDP is the way to go.
        /r$
______________________________________________________________________
OpenSSL Project                                http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

-- 
Albert SERRA 
===========================================
Integrated Systems Laboratory (DE/LSI-EPFL)
email: [EMAIL PROTECTED]