diff options
| author | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2013-07-25 12:16:45 +0200 |
|---|---|---|
| committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2013-07-25 12:16:45 +0200 |
| commit | ed4a4be17d0bb4b25ed4507a178de76bce23a0ec (patch) | |
| tree | 77dee9658b1bd0b56d0040ce67a067a59dd50179 | |
| parent | 5a4bf567d30d1ae10e0aebe459f3ef9cbebc94c3 (diff) | |
| download | gnutls-ed4a4be17d0bb4b25ed4507a178de76bce23a0ec.tar.gz | |
doc update
| -rw-r--r-- | doc/cha-gtls-app.texi | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/doc/cha-gtls-app.texi b/doc/cha-gtls-app.texi index 91b142f163..75d24582c8 100644 --- a/doc/cha-gtls-app.texi +++ b/doc/cha-gtls-app.texi @@ -720,9 +720,9 @@ case, in order to be able to use the DTLS handshake timers, the function @node DTLS sessions @subsection DTLS sessions -Because datagram TLS can operate over connections where the peer -of a server cannot be reliably verified, functionality is available to prevent -denial of service attacks. @acronym{GnuTLS} requires a server +Because datagram TLS can operate over connections where the client +cannot be reliably verified, functionality in the form of cookies, is available to prevent +denial of service attacks to servers. @acronym{GnuTLS} requires a server to generate a secret key that is used to sign a cookie@footnote{A key of 128 bits or 16 bytes should be sufficient for this purpose.}. That cookie is sent to the client using @funcref{gnutls_dtls_cookie_send}, and the client must reply using the correct cookie. The server side |