Transport Layer Security pre-shared key ciphersuites (TLS-PSK) is a set of cryptographic protocols that provide secure communication based on pre-shared keys (PSKs). These pre-shared keys are symmetric keys shared in advance among the communicating parties.
Questions tagged [tls-psk]
28 questions
0
votes
0 answers
Golang library not check "psk_ke" value in PskKeyExchangeModes when receive a ClientHello message in TLS 1.3
I use Goland code at 1.21.0 version, and I have some concern about TLS 1.3 library source code.
As I know, at chapter "4.2.9.Pre-Shared Key Exchange Modes" of RFC 8446 have mention about PskKeyExchangeModes.
The PskKeyExchangeModes have 2 value…
QuangTeo
- 1
0
votes
0 answers
Example of PSK in first handshake in TLS1.3 with JSSE (JDK11 or greater)
I've been trying to get an example working where the client passes a PSK ID to the server as part of the first TLS (TLS1.3) handshake and have been unsuccessful in doing so. I am using OpenJDK11.
I have been able to work with X.509 by setting the…
LittleBobbyTables
- 36
- 1
0
votes
0 answers
How can a client read the NewSessionTicket sent by the server on successful TLS handshake
TLS 1.3 supports session resumption using pre-shared keys. After a successful handshake the server may send the client a NewSessionTicket record, that contains a pre-shared key. The client may use this pre-shared key in order to resume the session…
Ido
- 397
- 2
- 7
- 22
0
votes
1 answer
OpenSSL 1.1.1 PSK TLS1.3 - no suitable signature algorithm error with TLS_256_GCM_SHA384 ciphersuite
I'm running some tests in windows with OpenSSL 1.1.1l 24 Aug 2021,
using s_client and s_server for both PSK TLS_128_GCM_SHA256 and TLS_256_GCM_SHA384.
For PSK TLS_128_GCM_SHA256 i'm able to stablish the connection sucessfully:
SERVER:
$openssl…
anotherdeveloper
- 3
- 1
- 3
0
votes
1 answer
PskTlsClient with Bouncy castle, System.IO.IOException on Connect
I'm developing a client-server with psk by openssl.
At the moment the server side is not implemented yet, there is a stub on my Ubuntu Linux machine only for tests purpose as the following:
openssl s_server -accept 9999 -cipher…
lunatic84
- 300
- 4
- 12
0
votes
0 answers
https:// access using QNetworkAccessManager
I've been trying to load a(ny) https:// webpage using QNetworkAccessManager, but can't get past the: preSharedKeyAuthenticationRequired(QSslPreSharedKeyAuthenticator *) signal. When I load the same pages with http:// they come in fine, but some…
MangoCat
- 89
- 5
0
votes
1 answer
BIO_set_conn_hostname & BIO_get_ssl missing from libssl-1_1.dll (OpenSSL)
I am trying to implement DTLS with PSK security in Delphi using the OpenSSL library. The C++ example I am basing this on calls "BIO_set_conn_hostname" and "BIO_get_ssl" but these functions do not appear to be in "libssl-1_1.dll".
The OpenSSL…
Martin
- 815
- 8
- 21
0
votes
1 answer
TLS extenstion pre_sharek_key
Can anyone explain to me what is pre_shared_key TLS extension and what is it relation with Session Ticket TLS extension because I observed that when the pre_shared_key extension is present in the TLS Client Hello message the Session Ticket extension…
Ala Jebnoun
- 65
- 1
- 10
0
votes
2 answers
Pre-shared key with openSSL: psk_server_cb callback under openSSL version 1.1.0h
I'm working with civetweb and openssl-1.1.0h. I need to create a network that works with multiple clients. The communication between the server and clients should be encrypted with pre-shared keys.
In my understanding, while a connection is…
Tzipi Kluska
- 3
- 2
0
votes
1 answer
OpenSSL cipher PSK-AES128-CCM8 is not supported?
I'm on Ubuntu 16.04, and openssl version returns "OpenSSL 1.1.1c 28 May 2019"
I would like to use PSK-AES128-CCM8 in an application but it does not seem to be supported. It is not returned by openssl ciphers -s -v ALL but it is returned by openssl…
Marc Van Daele
- 2,856
- 1
- 26
- 52
0
votes
1 answer
How to use pre-shared keys in OpenSSL
Is it possible to generate 2 pre-shared keys on on system, distribute them to two host A and B, so that A and B can then use those keys for the encrypted connection between them?
I'm not talking about Public Keys like RSA, but 2 pre-shared keys that…
wasp256
- 5,943
- 12
- 72
- 119
0
votes
0 answers
Using symmetric key(tls-psk) to configure SSL on Jetty
I have already successfully used asymmetric keys and certificate to configure SSL on jetty by following this website.
Now, I want to used symmetric key to configure SSL on jetty.
I used keytool to generate the symmetric key by following…
klichen
- 49
- 1
- 2
0
votes
1 answer
How to establish secure communication over MQTT using PSK in Java?
I want to establish secure communication over mqtt using PSK. I explored a lot but everywhere they are using certificates.
Meg
- 11
- 1