Comments (3)
zsup
commented on September 15, 2024
Yes, there are significant advantages.
Basically, SSL/TLS have a variety of ciphers that they may use in any given session. This has the advantage of providing compatibility with a wider range of clients. It has two major downsides:
- Supporting a range of ciphers requires a significant amount of flash and memory (at least for an embedded processor)
- When security flaws are found in SSL/TLS, it is usually because one of the cipher suites is found to be unsafe. New versions of SSL/TLS will drop the unsafe cipher suite, but old versions will still use it and therefore provide a clear attack surface.
Since we don't need to support client diversity, there's no advantage to SSL/TLS over the encryption we do use. And by only supporting RSA/AES, it significantly decreases the memory overhead (which means we can run on a processor with 20KB of RAM, which would not be possible with SSL/TLS). In addition, it is potentially more secure, because we are not supporting ciphers that might be determined to be insecure.
from spark-server.
syslot
commented on September 15, 2024
Thanks for your answer.
By the way, in spark server, dose one client map two pairs of keys(the public and private)?
from spark-server.
kennethlimcp
commented on September 15, 2024
The device holds its own private key while the server holds the public key as per normal security model.
In additional, communication with the server requires the use of the server public key stored in the device.
from spark-server.
Related Issues (20)
- OTA firmware update for Photons not working HOT 15
- Photons subscribed to SSEs do not return data HOT 1
- Subscribing to SSE using prefix filter does not work
- Installing dependencies fails HOT 3
- photon not works with the spark-server HOT 1
- Recommended Node.js version HOT 9
- Suggestion: safe mode healing / fleet management HOT 2
- SparkServer in production HOT 3
- Invalid CoAP version HOT 2
- Every time after "particle keys doctor core_id", "particle list" have no device which just added.
- Error: Invalid CoAP version HOT 5
- Not compatible with 0.5.x firmware HOT 1
- Subscribe does not work HOT 2
- device list is not udpated after addition of new Photon
- 0.6.0-rc.2 firmware no longer able to connect to spark-server HOT 8
- What are the features that are present only on the Particle cloud ? HOT 2
- How does this compare to the cloud server?
- Give this Repo some love :)
- Date Time format for DateTime Field HOT 1
- Photon handshake decryption error
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from spark-server.