[vlc-devel] [PATCH 9/9] lua: http: Announce the web interface over mdns
Nick Briggs
nicholas.h.briggs at gmail.com
Fri Sep 11 23:15:54 CEST 2020
> On 10 Sep 2020 22:47:41 +0300, Rémi Denis-Courmont wrote:
>
> Hi,
>
> Le torstaina 10. syyskuuta 2020, 21.03.00 EEST Nick Briggs a écrit :
>> RFC 8882, DNS-Based Service Discovery (DNS-SD) Privacy and Security
>> Requirements, was issued today and is relevant to this discussion.
>
> Thanks for bringing this up.
>
> I am more concerned about authenticating DNS-SD announces and binding them to
> an x509 certificate and a TLS ServerHello than with the privacy aspects,
> though.
>
> Is there a standard way to pass the advertiser identity (other than matching
> the CommonName)?
You might start with RFC 6125 (from 2011?), which goes by the rather long title of
"Representation and Verification of Domain-Based Application Service Identity within Internet Public Key Infrastructure Using X.509 (PKIX) Certificates in the Context of Transport Layer Security (TLS)" Ref: https://tools.ietf.org/html/rfc6125 <https://tools.ietf.org/html/rfc6125>
... and then perhaps look at some of the references from RFC 8882 to authentication schemes (e.g., RFC5054, RFC8235, RFC8236) to see if the properties of those schemes match up with your desired behavior and user experience for a VLC remote control app.
-- Nick Briggs
>
> --
> Реми Дёни-Курмон
> http://www.remlab.net/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.videolan.org/pipermail/vlc-devel/attachments/20200911/636b8261/attachment.html>
More information about the vlc-devel
mailing list