Re: [mosquitto-dev] Chacha20 and poly1305 for resource constrained devic

[Roger Light <roger@xxxxxxxxxx>]

Hi,

Sorry I keep forgetting to reply to your email. Allowing the use of
different ssl implementations is something that is already on the list
of things to do. You can already use libressl to get the new cipher
support. When compiling use:

make LDFLAGS=-L<path to libressl libs> -I<path to libressl includes>
WITH_TLS_PSK=no

Regards,

Roger





On Tue, Jan 13, 2015 at 1:50 PM, Real Time Logic
<realtimelogic@xxxxxxxxx> wrote:
>
> Chacha20/poly1305 is a new cipher/hash combination that is truly amazing due
> to its small size and fast encryption/decryption speed. In my opinion, this
> cipher combination should be the de-facto symmetric encryption for MQTT.
>
> The problem is that OpenSSL, which is used by Mosquitto, does not support
> this cipher. I therefore urge the Mosquitto developers to switch to either
> LibreSSL or boringssl (Google). Both of these libraries support
> Chacha20/poly1305.
>
> SSL can have a huge resource impact on small microcontrollers (both size and
> speed), and it is therefore crucial that the best cipher combination is
> selected to reduce the amount of resources used; resources are both memory
> and CPU. If you are interested, you can read our Certificate Management for
> IoT tutorial that explains this in detail:
> https://realtimelogic.com/ba/doc/en/C/shark/md_md_Certificate_Management_for_IoT.html
>
> From the above tutorial:
> The combination of ChaCha20 and Poly1305 is particularly well suited for
> securing small embedded devices that need to preserve memory, footprint, and
> maintain performance with the least amount of encumbrance, by cutting down
> on the amount of time spent encrypting and decrypting data.
>
>
>
>
> _______________________________________________
> mosquitto-dev mailing list
> mosquitto-dev@xxxxxxxxxxx
> To change your delivery options, retrieve your password, or unsubscribe from
> this list, visit
> https://dev.eclipse.org/mailman/listinfo/mosquitto-dev