End-to-End Transport Layer Security on Hyperledger Besu 1.4
DISCLAIMER: In October 2020 PegaSys was renamed to Quorum.
Released on February 26th, Hyperledger Besu v1.4 offers numerous anticipated features, including End-to-End TLS support for incoming and outgoing RPC endpoints.
Why Do We Care About TLS?
The adoption of Enterprise Ethereum across industries and organisations continues to accelerate as more projects move from inception to deployment. As implementers assess the suitability of the solution for their edge cases and threat models, and as system integrators battle the multitudes of business layer applications that need to interconnect, the need for in-depth security becomes more apparent. Ensuring the safety and security of data is everyone’s responsibility, and a key requirement for projects moving to production-ready status. PegaSys is here to provide you with a secure, robust and tamper-proof end-to-end solution that you can take into production.
What Does End-to-End Really Mean?
We know that the core blockchain technology provided by Hyperledger Besu is secure, but what about when data leaves the edges of the blockchain network through ancillary systems and applications? What happens when your blockchain transaction is being crafted and produced and transferred to your Besu node in the network?
With End-to-End TLS, you can ensure that your blockchain data is secured and encrypted between the various elements of the transaction creation and processing cycle.
Where is TLS Support Provided?
TLS is now enabled across Hyperledger Besu, its private transaction manager, Orion, and EthSigner, the secure keystore and signing service. Together, these applications use TLS between them to ensure transactions are securely encrypted using best in practice methods and techniques. This ensures data is only being passed through authorised applications and entities.
With support for TLS communication across Hyperledger Besu, Orion and EthSigner, we continue to make Enterprise Ethereum meet the demands and needs of consortiums and multi-national organisations. We invite everyone facing these challenges to take advantage of this offering and join us in the continued development of blockchain technology.
Check out our documentation to find out more about how you can make use of this new capability to secure your data!
- Hyperledger Besu TLS support for client and service communication
- EthSigner client and server communication using TLS on HTTP
- Orion TLS support for communication to Besu
Interested in learning more about how you can make use of End-to-End TLS? Reach out to us here.
Interested in learning more, or curious on how to get started with Hyperledger Besu? Check out the Besu docs, view the tutorials, check out our YouTube, visit the wiki, or take a look at some open issues in JIRA.
Those looking to interact one-on-one with Besu developers and contributors can join the conversation on Rocketchat at #besu, or join our regular contributor calls.