PLS8-E: SNI support for TLS connections | Telit Cinterion IoT Developer Community
June 22, 2018 - 2:53pm, 1147 views
Hi all!
We are developing an IoT product for our customer. As their backend is built on AWS, they heavily rely on SNI (server name indication) for load balancing, etc. From what i understand, disabling SNI on the backend would only be a temporary option, so this could really become a problem.
From what i read in https://iot-developer.thalesgroup.com/threads/https-tcp-connection-migration-sslv3-broke-out-system, SNI is not supported on the PLS8-E (which we use).
Are there any plans to implement SNI for future firmware versions of the PLS8-E. If yes, when can we expect this?
Can you think of any other solutions of this problem that don't involve disabling SNI on the backend?
Looking formward to your replies!
Best regards,
Alex
Hello,
I have confirmed with R&D that PLS8 module does not support SNI.
If this feature is important for you, please contact your local Gemalto technical sales or your distributor and ask about the possibility to implement it in the future releases.
I can't think of any workaround here that would not require some changes on the server side. If not disabling SNI maybe it would be possible to set this particular certificate as the default one. Form the module interfaces it is not possible to modify the TCP frames if you are using IP services over AT commands. You could use the module as a modem only instead.
Regards,
Bartłomiej