Abstract by Torstein Collett
The Secure Socket API
Network security libraries are notoriously hard for developers to use, leaving system administrators at the mercy of buggy and vulnerable applications. We explore the use of the standard POSIX socket API as a vehicle for a simplified security API, while also giving administrators the ability to control applications and tailor security policy. We present the Secure Socket API (SSA), a minimalist TLS API built using existing network functions and find that it can be employed by applications with as little as one line of code. We describe a prototype SSA implementation that leverages the power of network system calls, and present an evaluation of its utility.