I wrote a long blog post covering everything you ever wanted to know about Keyless SSLhttps://blog.cloudflare.com/keyless-ssl-the-nitty-gritty-technical-details/ …
@grittygrease In theory there should not be duplicate client_random but at least for DH there seems to be no reason not to guard against it.
-
-
@grittygrease Also, for related reasons, it seems worthwhile to require separate RSA keys to be used for DH and RSA exchange. -
@grittygrease Anyway, I think there are incremental improvements possible, but even as is it is good and interesting work! -
@BRIAN_____ Thanks! Getting from PoC to product is a long road.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.