Designing a simpler alternative to TLS

Adnan Maolood me at adnano.co
Sat Nov 21 02:53:15 GMT 2020

Previous message (by thread): [ANN] kiln - a static site generator for Gemini sites
Next message (by thread): Designing a simpler alternative to TLS
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I've been working on a simpler alternative to TLS, mostly for fun and
also as a learning excersize to have a better understanding of how TLS
works.

You can find it here:
https://sr.ht/~adnano/miso/

Obviously this has not undergone any security audits, so don't use it
for anything serious.

Biggest differences from TLS:

- No certificate authorities; use TOFU instead
- No version negotiation
- No session resumption
- Encrypted server name indication
- Much simpler

Let me know what you think!

Previous message (by thread): [ANN] kiln - a static site generator for Gemini sites
Next message (by thread): Designing a simpler alternative to TLS
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Gemini mailing list