How can we enable TLS 1.2 Session resumption support using DotNetty with Azure Protocol Gateway

Azure / DotNetty

DotNetty project – a port of netty, event-driven asynchronous network application framework

Other

4.09k stars 977 forks source link

How can we enable TLS 1.2 Session resumption support using DotNetty with Azure Protocol Gateway #368

Closed vivekbahl closed 6 years ago

vivekbahl commented 6 years ago

Hi,

In our Protocol Gateway implementation, for every connection request that a device sends, PG initiates a full handshake and sends a certificate to device every time. Can we utilize the TLS 1.2 Session resumption feature, to reduce the time/ resources spent for the TLS handshake, and reduce bandwidth usage at device end.

Does DotNetty provide some support, to enable these requirement. We will need to extract the Client Session Id/Key for storing in some cache store.

Thanks, Vivek Bahl

nayato commented 6 years ago

DotNetty is orthogonal to TLS session resumption. You'd need to check on configuring it for SChannel / SSPI on Windows or OpenSSL on Linux.