[gnutls-dev] Intent to implement DTLS

[Guus Sliepen]

Hello developers,

Unless others are already working on it, I intend to implement Datagram
TLS, as specified in draft-rescorla-dtls-04.txt, in GNUTLS. DTLS
slightly changes the handshake protocol and the record layer to allow
TLS to run over UDP (or other datagram protocols). Some applications
need the UDP semantics (unreliable, out-of-order packet delivery) in
order to function well. These include multimedia applications and VPNs.
Once GNUTLS supports DTLS, tinc (http://www.tinc-vpn.org/) will use it
to securely transmit network packets over the Internet.

OpenSSL has recently merged a patch for DTLS support in its CVS
repository. DTLS support will be included in version 0.9.8. Thus
it will be possible to do interoperability tests.

I would welcome CVS write access, but otherwise I'll send patches. I
also do not mind transferring copyrights to the FSF (I know I have to
sign a form and send it back to the FSF, but last time I got free
stickers so it was OK). If you have suggestions about how to proceed,
please tell me. Also, I will be working on this in spare time, help is
appreciated.

-- 
Met vriendelijke groet / with kind regards,
    Guus Sliepen <address@hidden>

signature.asc
Description: Digital signature