Problem: zyre lacks security

[Asmod4n]

At the moment, anyone can impersonate a peer as he likes.
This could be solved by increasing the UUID size to 32 octets so it could be the public key of a curve key pair.
What do you think?

[bluca]

I think the proper solution is to add full curve support: #494

[Asmod4n]

Ops, didn't see that.
Closed via #494

[wesyoung]

i see the uuid as more like the MAC address (eg: arp). in addition to adding curve to the sockets, the easier work-around right now is probably just adding messaging signing to your application stack(?).

[Asmod4n]

@wesyoung
I am currently only using zyre to find peers to connect to which are in the same group, i am not using zyre to send messages.
I am doing messaging with another set of sockets, which is authenticated and encrypted.

I would like to do the same with zyre alone, or else i could just reimplement the UDP broadcast messages without a need to link my app to czmq and zyre, which is a bit complicated when you want to cross compile.