Daniel Stenberg wrote, On 2008-07-23 14:43: > On Wed, 23 Jul 2008, Ruchi Lohani wrote: > >> Since a lot of open source softwares are using NSS, I wish to know whether >> we have some documentation on specifics of >> >> OpenSSL and NSS and the advantages NSS has over OpenSSL. If so, can anybody >> direct me over that or just give a brief comparison of both. > > If you can stand a comparison that also involves GnuTLS, then the GnuTLS guys > have one: > > http://www.gnu.org/software/gnutls/comparison.html > That table should be extended to cover some features that NSS has that are not presently shown anywhere in the table, features such as - support the for Japanese Camellia ciphers (and associated TLS cipher suites) - support for the TLS Session Ticket Extension, which allows the client to store the session cache info that would otherwise be stored on the server side.
I've been told that GnuTLS's API only supports carrying non-binary text strings as application data, and doesn't facilitate the transmission of pure binary files (e.g. containing lots of zero bytes). I find that rather hard to believe, but it is cited as a reason that some developers choose NSS over GnuTLS. I'd appreciate any light that could be shed on that. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
