Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

OpenSSL needs a competitor to keep them honest, because clearly they've failed at their duty to push back on TLS WG features, failed at deprecating old code (Tandem multiplication, really?) and failed at writing secure code.


"Duty" is a bit too strong a word for this don't you think?


Not in this case. There's an implied duty when you represent your work as being suitable for critical uses such as securing the world's communications.


I thought GnuTLS would have been the alternative to OpenSSL but apparently it fell short.


For a while, GnuTLS was faster to support newer TLS standards. But again, same boat of not taking a leadership approach to engage TLS WG.

More implementations:

https://en.wikipedia.org/wiki/Comparison_of_TLS_Implementati...


Was there a project management level reason to it, or was it just not the right combination of people? Anybody know more?


nss and nspr, to name one alternative.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: