Why begin with TLS? TLS is popular (and it works) Inherit desirable properties from TLS Familiar model Simple API In-band key exchange Easy to implement per connection policies Availability of stable open-source code No kernel changes Runs in user-land Can be packaged with applications Relatively easy to patch |