@igrigorik qq: what do modern browsers do with `ticket_lifetime_hint`? Should http://istlsfastyet.com take it into an account?
-
-
@BRIAN_____@davidben__@igrigorik@SaveTheRbtz Under what threat model does it provide value? Only client compromise -
@sleevi_@BRIAN_____@davidben__ if you compromise client, you should be able to decrypt previously captured traffic up to "lifetime" secs. -
@SaveTheRbtz If you compromise client to the point you have cross-process memory access, you have far worse problems. That's the point. -
@sleevi_ agreed. Broken PFS would probably be the least important thing at that point.
End of conversation
New conversation -
-
-
@sleevi_@davidben__@igrigorik@SaveTheRbtz Not the highest priority issue in the world, though.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.