I learned back then is that TLS can be implemented simply if you want to do it simply. "Experts" greatly overstate how hard crypto stuff is.
-
-
Replying to @BRIAN_____
And, finally, if you look at some ~2007-era NIST documents about key exchange, they pretty much foreshadowed all TLS flaws discovered since.
1 reply 0 retweets 3 likes -
-
Replying to @davidcadrian
Sure. Read http://csrc.nist.gov/publications/nistpubs/800-56A/SP800-56A_Revision1_Mar08-2007.pdf …. Compare TLS's key agreement scheme to the recommended schemes.
1 reply 0 retweets 1 like -
Replying to @BRIAN_____ @davidcadrian
Basically, the NIST document tells you to use the Extended Master Secret Extension, except in 2007 instead of 2015.
1 reply 0 retweets 2 likes
Replying to @BRIAN_____ @davidcadrian
Along the same lines: It's not NIST, but it was written before 2004: https://www.openssl.org/~bodo/tls-cbc.txt ….
12:32 AM - 28 May 2016
0 replies
0 retweets
2 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.