Re: [FSP-devel] FSPv3 Status - on hold

[Leon T. <fa...@gm...>]

On Fri, Jul 2, 2010 at 6:20 PM, Jeff Hawkins <rts...@ho...> wrote:
> I have a use case where IPSec can not be utilized.  I am considering
> adapting FSP for usage in embedded devices and Peers (Windows and Linux).
> There is some limitations of these embedded devices supporting IPSec, thus,
> my need to look to alternatives.  The use case requires usage of a UDP based
> File Transfer that provides security (Auth/Encryption) -- TCP based solution
> is not viable due to behaviors and performance in this particular wireless
> environment.  There are commercial solutions, however, I prefer the Open
> Source Path.  So, I am looking to potentially add DTLS to FSP, TFTP, or
> Other (?).  I am currently adding DTLS to FSP and NETKIT TFTP Packages as a
> prototype to assess operation and performance.  If the Project is willing to
> accept this Source, I/we are willing contribute -- I/we could make this
> configurable to operate in standard mode, or DTLS mode.
>
> What are your thoughts?  Would this be acceptable for incorporation into the
> Project as I/we would like to provide to the Project and OSS community for
> others to utilize.
>

I'm not sure DTLS really is a good match for FSPv2, mostly because FSP
is a protocol with so little state that it can actually easily recover
if all of it is lost (you just have to wait a little). You lose that
character when opting for DTLS (though I see no reason why it can't
work). Having said that I do agree IPsec is often not an option, since
it requires way more infrastructure.