Bug#1023369: ITP: s2n-tls -- C99 implementation of the TLS/SSL protocols
Package: wnpp
Severity: wishlist
Owner: Noah Meyerhans <noahm@debian.org>
X-Debbugs-Cc: debian-devel@lists.debian.org
* Package name : s2n-tls
Version : 1.3.26
Upstream Author : Amazon Web Services
* URL : https://github.com/aws/s2n-tls
* License : Apache 2.0
Programming Lang: C
Description : C99 implementation of the TLS/SSL protocols
s2n-tls is a C99 implementation of the TLS/SSL protocols that is
designed to be simple, small, fast, and with security as a
priority. It is released and licensed under the Apache License 2.0.
.
The s2n-tls I/O APIs are designed to be intuitive to developers
familiar with the widely-used POSIX I/O APIs, and s2n-tls supports
blocking, non-blocking, and full-duplex I/O. Additionally there are
no locks or mutexes within s2n-tls.
.
s2n-tls implements SSLv3, TLS1.0, TLS1.1, and TLS1.2. For encryption,
s2n-tls supports 128-bit and 256-bit AES, in the CBC and GCM modes,
ChaCha20, 3DES, and RC4. For forward secrecy, s2n-tls supports both
DHE and ECDHE. s2n-tls also supports the Server Name Indicator (SNI),
Application-Layer Protocol Negotiation (ALPN) and the Online
Certificate Status Protocol (OCSP) TLS extensions. SSLv3, RC4, 3DES
and DHE are each disabled by default for security reasons.
.
As it can be difficult to keep track of which encryption algorithms
and protocols are best to use, s2n-tls features a simple API to use
the latest "default" set of preferences. If you prefer to remain on a
specific version for backwards compatibility, that is also supported.
This package will be maintained by the cloud team. Initial packaging is
being driven by the awscli package, version 2 of which will depend on this
package.
Reply to: