Wireguard looks nice and easy.
But, manual keying :/ #SSTIC
-
-
Replying to @pollux7
No, you're mistaken. WireGuard has a key exchange. It's 1-RTT. It's not some kind of manually keyed symmetric key disaster. How you distribute the public keys for use in the key exchange is up to you.
1 reply 0 retweets 0 likes -
-
Replying to @pollux7
Would you rather it reinvent the key distribution wheel _again_? The idea that every project that uses public key cryptography also needs to re-solve the key distribution problem yet-again is preposterous. Rather, WireGuard lets you easily interface with existing mechanisms.
1 reply 0 retweets 0 likes -
Replying to @EdgeSecurity
I just point out that key management can be difficult when you have many keys and servers I see great value in some choices Wireguard is making, especially simplicity and auditability
1 reply 0 retweets 0 likes -
Replying to @pollux7 @EdgeSecurity
I'm not saying wireguard should do key management :)
1 reply 0 retweets 0 likes
Right, so the idea is to make a easy to use core so people can write all sorts of wild utilities on top. For example, people are doing things now with DHT and meshes, and also usual things like TLS.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.