I don't know yet--it's the next thing I'll need to figure out.
On 9/22/2014 5:55 AM, Christopher Schultz wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Borislav,
On 9/20/14 11:57 PM, Borislav Trifonov wrote:
Switched to a configuration where Tomcat is now front-ended
Switched to a configuration where Tomcat is now front-ended by Nginx acting as
a load balancer, so now the problem has moved to a different spot.
As for the PSK: the computational expense of key exchange (we have many
frequent short lived connections) is a con that brings zero benefit to our
se
Are you saying Tomcat can use OpenSSL instead of Java for TLS? That would be
great, as OpenSSL does support a number of TLS-PSK ciphers.
Borislav Trifonov, CTO
MSc
Macroh Canada, Inc.
#206-395 Railway St.
Vancouver, BC, V6A 1A4
Canada
T: +1 604 694 0002
C: +1
We need to use pre-shared keys, not certificates. TLS supports PSK, but how
does one set this up in Tomcat? All the guides for SSL/TLS in Tomcat I've found
talk about setting up certificates.
