-
Notifications
You must be signed in to change notification settings - Fork 2
HTTPS TLS From the ESP32
In order for the ESP32 to have a secure HTTPS connection with CS Server, the EPS will use "mbed TLS" library that comes with ESP-IDF framework. For the connection to be secure we will need to provide the following certifications:
-
Each station(ESP node) has to have its own certificate that will provide to the server. The server needs to identify the station. We need to talk to the API. The API uses "Certificate Authentication" to make sure both the station and the server to say who truly they are.
-
The station will need to store the trusted server certificate in the station so during handshake with the server it can be compared with certificate presented by server
-
The station will need to store the CA(Certificate Authority) certificate in order to make sure that certificate presented by the server is signed by trusted CA. We need because we are creating our own CA and signing our own certificates. I assume later we will obtain our certificates from CA but we will still need to list them in the CA list.