open secure socket... using certificate

Richard Gaskin ambassador at fourthworld.com
Fri Jan 29 01:07:50 EST 2021


Tom Glod wrote:

 > Richard..... in the labs ...... I am testing the viability of using
 > Livecode as ONLY a UI layer.  So I have to find the fastest way of
 > getting decrypted JSON data from Core process (Go binary) to the UI
 > Layer that is a LC stack.

SLL encryption/decryption adds overhead to that process.


 > So when communicating data via the localhost or socket, I figured it
 > should still be encrypted if possible when in transit between the 2
 > programs. It's an attack vector in this kind of a scenario, a local
 > one, not remote as much.

The main benefit of encrypted sockets is to mitigate man-in-the-middle 
attacks.

If you have a man in the middle of processes on a local computer that 
isn't you, it would seem you have bigger concerns. ;)



 > It would have been nice to reply on the protocol for it. I can get
 > around this particular problem of course by encrypting on one side
 > and decrypting on the other, also.  If I am really paranoid about
 > my security.

Paranoia can be healthy, when taken as directed. There may be a benefit 
to encrypting localhost sockets that I'm unfamiliar with, and if someone 
can point me to threat vector I'd be grateful to learn.

But I can't recall seeing a system that uses encrypted comms on local 
sockets.


 > What do you think will be the fastest way?  Socket? Open Process?

Sockets and multiprocessing are such different things I'm pretty sure I 
don't understand the usage scenario.  But if you can describe we can 
brainstorm to optimize, as many good threads here have done before.

-- 
  Richard Gaskin
  Fourth World Systems
  Software Design and Development for the Desktop, Mobile, and the Web
  ____________________________________________________________________
  Ambassador at FourthWorld.com                http://www.FourthWorld.com




More information about the use-livecode mailing list