[Top] [Contents] [Index] [ ? ]

Footnotes

(1)

http://www.openssl.oa>

(2)

ftp://ftp.gnupg.org/gcrypt/alpha/gnutls/libtasa>

(3)

ftp://ftp.gnupg.org/gcrypt/alpha/gnutls/openca>

(4)

ftp://ftp.gnupg.org/gcrypt/alpha/libgcrya>

(5)

On current versions of GnuTLS it is possible to override the default crypto backend. Check see section Cryptographic Backend for details

(6)

The first message in a TLS handshake

(7)

IETF, or Internet Engineering Task Force, is a large open international community of network designers, operators, vendors, and researchers concerned with the evolution of the Internet architecture and the smooth operation of the Internet. It is open to any interested individual.

(8)

AES, or Advanced Encryption Standard, is actually the RIJNDAEL algorithm. This is the algorithm that replaced DES.

(9)

ARCFOUR_128 is a compatible algorithm with RSA's RC4 algorithm, which is considered to be a trade secret.

(10)

You should use gnutls_handshake_set_private_extensions to enable private extensions.

(11)

MAC stands for Message Authentication Code. It can be described as a keyed hash algorithm. See RFC2104.

(12)

It really depends on the group used. Primes with lesser bits are always faster, but also easier to break. Values less than 768 should not be used today

(13)

SRP is described in [RFC2945] (see section Bibliography)

(14)

See also the Server Name Indication extension on serverind.

(15)

See LDAP, IMAP etc.

(16)

in SRP authentication

(17)

such as the gnutls_certificate_credentials_t structures


[Top] [Contents] [Index] [ ? ]

This document was generated on July, 20 2009 using texi2html 1.76.