John
Reputation: 63
Encryption over TLS
I need to implement end-to-end encryption. To do this, I'm thinking of exchanging public keys between two users, then encrypt messages with the public key, and send the message back to the user via the server. Does it make sense to do this messaging over TLS, or would it be redundant? Since the data will be encrypted, I think TLS will be superfluous here, but I doubt it.
Upvotes: 0
Views: 146
Answers (1)
joaopfg
Reputation: 1287
It's not only about encryption. You also need a trustful third party to authenticate the website in order to avoid DNS poisoning. That's the job of an SSL/TLS certificate.
Upvotes: 1
Related Questions
- Is TLS over TLS possible?
- TLS and network intermediaries
- Security and getting a certificate: designing a protocol
- Non-RSA TLS1.2 Packet decryption
- How to establish mutual secure connection with openssl?
- SSL or TLS encryption for custom protocol
- SSL and encryption
- OpenSSL establish connection between client and server
- Understanding the TLS/SSL protocol
- openssl ssl encryption