-->

ESP8266 Community Forum

Open Community Forum for ESP8266, Come share Arduino and IoT (Internet of Things)
https://www.esp8266.com/

Three Questions About SSL support on ESP8266 module

https://www.esp8266.com/viewtopic.php?f=166&t=20607

Page 4 of 4

Re: Three Questions About SSL support on ESP8266 module

PostPosted: Sun Dec 22, 2019 7:11 am
by eriksl
You misunderstood me. I don't think you shouldn't do it, but I think you will encounter limits very often (like this one).

Also the question arises how safe it really is, having some corners cut here and there probably.

Re: Three Questions About SSL support on ESP8266 module

PostPosted: Sun Dec 22, 2019 5:35 pm
by davydnorris
I would say it's as safe/unsafe as any other implementation - the protocol is standard, mbedtls is public and so well scrutinised for holes, and if you choose a good cypher suite, at least 2048 bit keys, SHA256 or better signatures, TLS 1.2+, and avoid known issues (like SSL3 which they recently re-enabled in the code and I promptly disabled again) you are as safe as anybody else.
All times are UTC - 5 hours
Page 4 of 4
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/