We need to finish filling out the TLS code for TCP and WS transports. Make channels aware of the CN in the client certificate and disable AES. This will provide remove redundant encryption and provide performance increases.

It's long been known that salt uses a home-brew crypto implementation and while this has undergone signification security reviews over the years it still is not ideal. Allowing users to use TLS instead of our crypto implementation should increase confidence moving forward.