Hacker News new | ask | show | jobs
by jwr 2643 days ago
> you get message integrity but no encryption so some observer could see all the traffic but not be able to interfere

Authentication without encryption isn't very useful, unless you sign every message.
1 comments
teraflop 2643 days ago
TLS with a NULL cipher does, in fact, sign every message. (effectively)
link
Evidlo 2643 days ago
Does ssh or telnet have a similar feature? Transmit in plaintext but prevent others from tampering with my box?
link
Evidlo 2643 days ago
Apparently this is what ipsec is for, but it looks like the Wiznet device they're using doesn't have support in its IP stack.

https://www.geeksforgeeks.org/computer-network-ip-security-i...

link