[Help-gnutls] Signing multicast traffic with gnutls API ?

Nikos Mavrogiannopoulos nmav at gnutls.org
Thu Oct 30 12:01:38 CET 2008


Actually you cannot use TLS as a protocol since you don't have peer to
peer communication to perform a handshake. You could use
gnutls_x509_privkey_sign_data() and verify_data().

regards,
Nikos

On Thu, Oct 30, 2008 at 12:37 PM, Henning Rogge <rogge at fgan.de> wrote:
> Hello,
>
> I'm working on a small application to distribute flooding traffic in a
> mobile adhoc network. The application use retransmission and duplicate
> suppression at the moment, but it has no way to authentificate the
> broadcasted messages.
>
> The easiest sollution seems to sign a hash value of every package with a
> asymmetric public key and check this signature at the
> receiver/retransmitter.
>
> Can I use the gnutls api for this case ? Each node will have a X509 keyring
> with the public keys of all nodes and signed by a trusted root CA, so key
> distribution is not necessary.
>
> Henning Rogge
>
> *************************************************
>
> Diplom-Informatiker Henning Rogge
>
> Forschungsgesellschaft für
>
> Angewandte Naturwissenschaften e. V. (FGAN)
>
> Neuenahrer Str. 20, 53343 Wachtberg, Germany
>
> Tel.: 0049 (0)228 9435-961
>
> Fax: 0049 (0)228 9435-685
>
> E-Mail: rogge at fgan.de
>
> Web: www.fgan.de
>
> ************************************************
>
> Sitz der Gesellschaft: Bonn
>
> Registergericht: Amtsgericht Bonn VR 2530
>
> Vorstand: Dr. rer. nat. Ralf Dornhaus (Vors.), Prof. Dr. Joachim Ender
> (Stellv.)
>
> _______________________________________________
> Help-gnutls mailing list
> Help-gnutls at gnu.org
> http://lists.gnu.org/mailman/listinfo/help-gnutls
>
>





More information about the Gnutls-help mailing list