Add encryption and authentication to peers #494
Comments
|
this is how we were starting to think about it at the python level: @hintjens laid out some examples but i've not had a chance to implement yet, but have started to think about with these points in mind... there are a few spots in czmq that require touching to deal with the auth part. i had gotten it to work with the basic username/password against the gossip socket (and the peers), crypto may be a little less trivial... https://github.com/zeromq/czmq/compare/master...wesyoung:fix/auth?expand=1 is the way i've been testing the basic auth pieces (if only to highlight what may need touching, it may not be 100% accurate but might help...). it also depends on if you're using gossip, do you want that auth protected too, etc... |
|
Yes - thanks! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I would like to add encryption and authentication to the peers.
It is already mentioned in the 36/ZRE draft under the paragraph "Security".
As zyre uses czmq, I would do it similar to the example in ironhouse.c and save the certs of all peers in the cert storage.
Any advice from your side?
The text was updated successfully, but these errors were encountered: