|
|
|
|
|
|
by skissane
2132 days ago
|
|
|
> In an alternate universe, an application would call connect('google.com', secure=true), and the OS would make an encrypted connection IBM's mainframe operating system z/OS (formerly known as MVS) has a feature called AT-TLS (Application Transparent TLS). With AT-TLS, you can configure operating system policies to intercept TCP socket calls from an application, and automatically add TLS to the sockets. That way, some legacy app, which knows nothing about TLS, can have TLS support added to it, without any modifications required. There is an IOCTL that can be called on the sockets, which can find out whether AT-TLS is enabled, what certificate is being used, etc. So applications can easily be enhanced to detect whether AT-TLS is enabled on a connection and respond differently. https://www.ibm.com/support/knowledgecenter/en/SSLTBW_2.4.0/... |
|
|