Explore the world of rustls, an open-source Transport Level Security (TLS) stack written in safe Rust, in this 35-minute conference talk from RustFest Paris 2018. Dive into the current state of TLS support in the Rust ecosystem and the design choices behind rustls. Learn about its goals, characteristics, integrity measures, deployment strategies, and countermeasures. Discover modern TLS bindings, API implementations, and performance comparisons with OpenSSL. Gain insights into rustls' testing procedures, error handling, type system, and verification processes. Understand the future directions for rustls, including non-blocking I/O and formal verification. Engage with questions about timing bugs and scope, and explore the differences between rustls and OpenSSL APIs.
Overview
Syllabus
Intro
What is rustls
TLS
Goals
Characters
Integrity
History
Deployment
Countermeasures
Modern TLS
Bindings
TLS API
Tokyo
Rustls 2 years old
Testing
Performance
Shortcut
Rustls vs Open
Handshaking performance
Full handshake performance
TLS open source
BIM chaos
Error codes
Type system
Verification
Terminal State
The Future
NonRem
Calton
Mesalock
Test
Verify
Questions
Timing bugs
Scope
Ring
OpenSSL API
Taught by
Rust
