Handing over a tls server between processes

Dmitry Belyavsky beldmit at gmail.com
Tue Aug 15 13:00:50 UTC 2023


Could you please raise the discussion on GitHub?

On Tue, Aug 15, 2023 at 11:49 AM Mohammad Zolfaghari <
mohammad.zolfaghari at actian.com> wrote:

> We are going to use openssl library in our product. A Client/Server
> communication that should be encrypted but there are two processes on the
> server side. Having done the first process, the socket handle will be
> handed over to the second process and it is needed for both connections to
> be encrypted. So, we are thinking whether we can use the
> serialization/deserialization of the ssl_session between our processes,
> regarding the fact they are playing a server role in the TLS connection. We
> would like to find a way to avoid paying the cost of key agreement protocol
> multiple times while we are handing over the connection. It would be kind
> of you to let us have your thoughts.
>
> Best regards | Viele Grüße
>
>
>
> Mohammad Zolfaghari
>
> Software Engineer
>
> Actian, A Division of HCLSoftware
>
> * M *+49 162 27 88 158
> www. <https://www.actian.com/>actian.com <https://www.actian.com/>
>
>
>
> <https://www.hcltechsw.com/data-analytics-insights>
>
>
> GESELLSCHAFTSANGABEN: Actian Germany GmbH | Sitz der Gesellschaft:
> Halenreie 42, 22359 Hamburg | Geschäftsführung: Stephen Padgett, Marc
> Monahan | Handelsregister: Amtsgericht Hamburg | HRB 135991 | USt-IdNr:
> DE252449897
>
> CONFIDENTIAL: This email and any files transmitted with it are
> confidential and intended solely for the use of the individual or entity to
> whom they are addressed. If you have received this email in error, please
> notify the system manager. This message contains confidential information
> and is intended only for the individual named. If you are not the named
> addressee you should not disseminate, distribute or copy this e-mail.
> Please notify the sender immediately by e-mail if you have received this
> e-mail by mistake and delete this e-mail from your system. If you are not
> the intended recipient you are notified that disclosing, copying,
> distributing or taking any action in reliance on the contents of this
> information is strictly prohibited.
>
>

-- 
SY, Dmitry Belyavsky
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mta.openssl.org/pipermail/openssl-users/attachments/20230815/066aa283/attachment-0001.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Outlook-jedlghrp.png
Type: image/png
Size: 6149 bytes
Desc: not available
URL: <https://mta.openssl.org/pipermail/openssl-users/attachments/20230815/066aa283/attachment-0002.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Outlook-tg2u2lqv.png
Type: image/png
Size: 70639 bytes
Desc: not available
URL: <https://mta.openssl.org/pipermail/openssl-users/attachments/20230815/066aa283/attachment-0003.png>


More information about the openssl-users mailing list