diff --git a/docs/development/protocols/vless.md b/docs/development/protocols/vless.md index c5297cb420..6011ce4383 100644 --- a/docs/development/protocols/vless.md +++ b/docs/development/protocols/vless.md @@ -61,6 +61,8 @@ BETA 2 预计推出两个初级的 Scheduler:Zstd 压缩、数据量动态扩 ## Encryption +目前实现见 [VLESS Encryption](https://github.com/XTLS/Xray-core/pull/5067) + 与 VMess 的高度耦合不同,VLESS 的服务端、客户端不久后可以提前约定好加密方式,仅在外面套一层加密。这有点类似于使用 TLS,不影响承载的任何数据,也可以理解成底层就是从 TLS 换成预设约定加密。相对于高度耦合,这种方式更合理且灵活:一种加密方式出了安全性问题,直接扔掉并换用其它的就行了,十分方便。VLESS 服务端还会允许不同的加密方式共存。 对比 VMess,VLESS 相当于把 security 换成 encryption,把 disableInsecureEncryption 换成 decryption,就解决了所有问题。目前 encryption 和 decryption 只接受 \"none\" 且不能留空(即使以后有连接安全性检查),详见 [VLESS 配置文档](https://github.com/rprx/v2fly-github-io/blob/master/docs/config/protocols/vless.md)。encryption 并不需要往外移一级,一是因为无法复用很多代码,二是因为会影响控制粒度,看未来的应用就明白了。 diff --git a/docs/en/development/protocols/vless.md b/docs/en/development/protocols/vless.md index 66da5fbdbc..6a926587f8 100644 --- a/docs/en/development/protocols/vless.md +++ b/docs/en/development/protocols/vless.md @@ -60,6 +60,8 @@ Schedulers don't need to wrap everything on the outside like Encryption below, b BETA 2 is expected to launch two elementary Schedulers: Zstd compression and dynamic data expansion. Advanced operations involve controlling and allocating from a macro level, which is postponed for now. ## Encryption + + See [VLESS Encryption](https://github.com/XTLS/Xray-core/pull/5067). Unlike VMess's high coupling, VLESS servers and clients will soon be able to agree on an encryption method in advance, wrapping only one layer of encryption on the outside. This is somewhat similar to using TLS; it doesn't affect any carried data and can be understood as swapping the underlying layer from TLS to a preset agreed encryption. Compared to high coupling, this method is more reasonable and flexible: if a security issue arises with one encryption method, just discard it and switch to another, very convenient. VLESS servers will also allow different encryption methods to coexist.