Java 9's implementation of the DTLS API is transport-independent and light-weight. The design considerations for the API were as follows:
- Read timeouts will not be managed
- The implementation will use a single TLS record for each wrap/unwrap operation
- The application, not the API, will be required to:
- Determine timeout values
- Assemble out-of-order application data
The DTLS is a protocol used to secure data from the application layer before that data is passed to a transport layer protocol. DTLS is a good solution for encrypting and transmitting real-time data. Caution should be exercised so that we do not introduce vulnerabilities in our application's implementation. Here are security considerations specific to ...