Discussion:
[stats-rosuda-devel] Encryption with Rserve 1.8-1?
Friedrich Schuster
2014-11-25 09:32:27 UTC
Permalink
Hi,

Looks like I can't find info on encryption with Rserve (Dev version 1.8-1).

Has encryption to be compiled at compile/installation time at the Rserve server?
Is it possible to use an encrypted connection with the REngine java client?

And thanks for the help with authentication!

Friedrich Schuster
Simon Urbanek
2014-11-25 20:40:18 UTC
Permalink
Post by Friedrich Schuster
Hi,
Looks like I can't find info on encryption with Rserve (Dev version 1.8-1).
Has encryption to be compiled at compile/installation time at the Rserve server?
It is compiled by default if OpenSSL is available.
Post by Friedrich Schuster
Is it possible to use an encrypted connection with the REngine java client?
There are three ways to use the encryption:

a) QAP over TLS - this is the same protocol as used by default Rserve (QAP), but it is conducted over a TLS-secured channel.

b) wss (WebSockets over SSL) or https upgrade - standard HTTPS/WSS protocols wrapping QAP (typically use by JS interfaces to Rserve)

c) RSA-encyrpted authentication. This only affect the authentication pieces with uses RSA encryption, the actual payload after authentication is no longer encrypted (for speed).

The Java client doesn't support any of the above directly, but the RConnection API allows the application so supply the Socket, so you can create a connection using SSLSocket and then instantiate RConnection to use the option a) above.

Cheers,
Simon
Post by Friedrich Schuster
And thanks for the help with authentication!
Friedrich Schuster
_______________________________________________
stats-rosuda-devel mailing list
http://mailman.rz.uni-augsburg.de/mailman/listinfo/stats-rosuda-devel
Loading...