ive read that TLS will eventually be used in top of DS so i would like to offer a suggestion
dont use the POS that is OpenSSL
there are much better secure versions that remove all the legacy crap
https://en.wikipedia.org/wiki/LibreSSL#Security_and_vulnerabilities
"It's a fork of OpenSSL that the group behind the OpenBSD operating system maintains. Almost immediately, the group stripped 90,000 lines of code from OpenSSL. They have cleaned their SSL library further since then while adding new modern features."
https://bearssl.org/
BearSSL is something that i was very interested in ,its written by Thomas Pornin which im sure you've heard of.
written from scratch in C and has a very small footprint but now its in alpha.But by the time DS will implement TLS is might be in a more mature state.
ive read that TLS will eventually be used in top of DS so i would like to offer a suggestion
dont use the POS that is OpenSSL
there are much better secure versions that remove all the legacy crap
https://en.wikipedia.org/wiki/LibreSSL#Security_and_vulnerabilities
"It's a fork of OpenSSL that the group behind the OpenBSD operating system maintains. Almost immediately, the group stripped 90,000 lines of code from OpenSSL. They have cleaned their SSL library further since then while adding new modern features."
https://bearssl.org/
BearSSL is something that i was very interested in ,its written by Thomas Pornin which im sure you've heard of.
written from scratch in C and has a very small footprint but now its in alpha.But by the time DS will implement TLS is might be in a more mature state.