You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I'm the main maintainer of Leshan project : a Java LwM2M implementation hosted by Eclipse Foundation.
Until now we are using Scandium (a java DTLS 1.2 implementation hosted Eclipse foundation from Californium project) but recently I need to look at TLS 1.2 for Leshan (because we try to add coaps+tcp support) and I came to the conclusion that :
There is not so good choice in Java world for DTLS and TLS for IoT.
I ask myself if my assumption :
is wrong ? and so I maybe missed something.
OR is right ? and so we are probably several to face this situation and maybe we can collectively try to improve it.
Do you want to improve the existing DTLS implementation in OpenJDK?
This could be a way (lobbying to change OpenJDK TODO list and/OR try to help pushing code). But maybe not the only one possible solution, we could also imagine to try to add needed API in OpenJDK and push implementation in BouncyCastle.
OR maybe work on a durable project which host an mbedTLS java binding?
I don't know exactly 🤷
But first we must be sure that IoT Java Developers agree about the situation and collects their needs then later see how we can solve it.
(Note that I'm not just talking about DTLS but also TLS in version 1.2 and/or 1.3)
I'm the main maintainer of Leshan project : a Java LwM2M implementation hosted by Eclipse Foundation.
Until now we are using Scandium (a java DTLS 1.2 implementation hosted Eclipse foundation from Californium project) but recently I need to look at TLS 1.2 for Leshan (because we try to add coaps+tcp support) and I came to the conclusion that :
There is not so good choice in Java world for DTLS and TLS for IoT.
I ask myself if my assumption :
I created a github repository and begin to summarize some information about that : https://github.com/sbernard31/thermos
The idea would be to :
I try to talk about that at security-dev mailing list from OpenJDK and this is not clear if they will work to improve that situation, here is a link to that discussion : https://mail.openjdk.org/pipermail/security-dev/2024-March/038906.html
After speaking with Frederic Desbiens, he advises me to contact Hono project as it could be interested ? If you are, do not hesitate to discuss with us at https://github.com/sbernard31/thermos.
The text was updated successfully, but these errors were encountered: