Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-76876

Implement RawPublicKey security mode for CoAP

    XMLWordPrintable

    Details

    • Type: User Story
    • Status: Open
    • Priority: P3: Somewhat important
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: CoAP, Network: SSL
    • Labels:
      None
    • Epic Link:
    • Story Points:
      40
    • Vertical:
      Industrial Automation

      Description

      Description:

      Currently security based on RawPublicKeys (see https://tools.ietf.org/html/rfc7252#section-9) is not implemented for CoAP, because the underlying network libraries have not implemented it yet. In particular, according to https://en.wikipedia.org/wiki/Comparison_of_TLS_implementations it seems like OpenSSL does not plan to add the implementation anytime soon. If we want to support it, there are 2 options:

      • Wait until RawPublicKey mode is implemented by the underlying libraries of Qt Network. As soon as Qt Network supports it, QCoapQUdpConnection can implement the RawPublicKey mode.
      • Investigate other DTLS implementations supporting this mode already and integrate in Qt Coap module (by adding an alternative implementation of the QCoapConnection interface). A possible option could be using a transport based on TinyDTLS (https://projects.eclipse.org/projects/iot.tinydtls), which is widely used by other secure CoAP implementations.

        Attachments

          Issue Links

          No reviews matched the request. Check your Options in the drop-down menu of this sections header.

            Activity

              People

              Assignee:
              ablasche Alex Blasche
              Reporter:
              sonakur Sona Kurazyan
              PM Owner:
              Vladimir Minenko Vladimir Minenko
              RnD Owner:
              Alex Blasche Alex Blasche
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Dates

                Created:
                Updated:

                  Gerrit Reviews

                  There are no open Gerrit changes