Open Source

Projects
Patches

Top Projects

SimpleFlow
libtlssep
guestrace
libdmapsharing
dmapd

System Integration

Notes
SRPMs

libtlssep

A TLS library with built-in privilege separation protections

Overview

Libtlssep (pronounced lib·te̅·el·sep) aims to provide an improved TLS API while also protecting private keys using privilege separation. Libtlssep's architecture includes a helper process called tlssep-decorator which handles all TLS operations and thus is able to isolate private keys from applications. An application first creates a network socket to a server (or client), and then it passes this socket to tlssep-decorator. All subsequent communication with the server passes through tlssep-decorator.

Details

The Proceedings of the Fifth International Conference on Security, Privacy, and Applied Cryptography Engineering includes a paper we wrote about libtlssep. Please refer to libtlssep's API documentation for details about how to use the library.

Email: webpage@flyn.org — ✉ 315A South Moore Loop; West Point, New York 10996; USA