4 Replies Latest reply on Jan 8, 2020 5:40 PM by KoSa_1909416

    Using TLS without server authentication

    KoSa_1909416

      Hi All,

       

      What should I do if I would like use TLS without server authentication ?

       

      Should I just build without a root certificate?

       

      In the TLS Security related API, authentication is done explicitly,
      so should I give up that API function?

       

      Best Regards,
      Sakagami

        • 1. Re: Using TLS without server authentication
          PriyaM_16

          Hello,

          The SSL handshake requires a rootca certificate to authenticate the server's identity. Do you want to use the secure communication between the client and server or a non secure one?

          I came across this blog post for SSL handshake. The SSL/TLS Handshake: an Overview - SSL.com

          Can you please point out the steps you are referring to?

          1 of 1 people found this helpful
          • 2. Re: Using TLS without server authentication
            KoSa_1909416

            Dear PriyaM_16,

            Thank you for your reply.

             

            >Do you want to use the secure communication between the client and server or a non secure one?

             

            I hope to use a non secure communication.

             

            >Can you please point out the steps you are referring to?

             

            I checked the URL "The SSL/TLS Handshake: an Overview - SSL.com" .

            In the second step

            "The server responds:"Hey there! Let's ....... .......

            ..................... Now here's my certificate, including my public key."

             

            I don't use certificate and hope to use the like SSL handshake.

            In this case, Could you tell me how to set up the WICED ?

             

            Best Regards,

            Sakagami

            • 3. Re: Using TLS without server authentication
              MuraliR_36

              Hi Sakagami

               

              Since you want to use non secure communication, you don't need to use any certificates.

              Could you try referring the apsta example available at /43xxx_Wi-Fi/apps/snip/apsta.

              This example hosts a http server and allows clients to connect to it without the need of any certificates.

               

              Thanks

              1 of 1 people found this helpful
              • 4. Re: Using TLS without server authentication
                KoSa_1909416

                Dear MuraliR_36,
                Thank you for your reply and
                sorry for late response.

                 

                With my poor English and poor understanding of SSL / TLS,
                It looks like we have been going the wrong way. Once, close this thread and open a new one.
                Thank you for your supports.

                 

                [What I want to do]
                    I am planning to make a client to connect to the https server with WiCED.
                    Then I hope to disable the server certificate validation check.

                 

                Best Regards,
                sakagami