Still time for Apr1 RFC reducing server_random and client_random in TLS handshake to 1 byte to disclose less internal state of the PRNG!
-
-
-
Replying to @BRIAN_____
@BRIAN_____@hillbrad Which (1) a counter would do just fine, (2) they are already of adequate length for.2 replies 0 retweets 0 likes -
Replying to @WatsonLadd
@BRIAN_____@hillbrad Futhermore, DHE and ECDHE are contributory for honest servers.1 reply 0 retweets 0 likes -
Replying to @WatsonLadd
@BRIAN_____@hillbrad Replay require reuse of ephermental keying material on the server side.1 reply 0 retweets 0 likes
Replying to @WatsonLadd
@WatsonLadd @hillbrad Many (most?) servers reuse ephemeral keys. Some use the same key until the server is restarted--unclever but honest.
2:08 AM - 2 Apr 2014
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.