@bascule @matthew_d_green @marshray The point of WebCrypto is to provide correct implementations so that you DON'T do it (wrong) yourself
-
-
-
@sleevi_@matthew_d_green@marshray with PKCS#1v1.5, even if the browser vendor gets it right you're still vulnerable
End of conversation
New conversation -
-
-
@bascule@matthew_d_green@marshray I believe you have missed the point@agl__ was making. They're hard to get right if you do it yourself -
@sleevi_@matthew_d_green@marshray@agl__ do we trust every browser vendor to get them right if they're hard to get right? -
@bascule@matthew_d_green@marshray@agl__ I should hope so. With browsers today, if there was a leak, it could be fixed in days, not years.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.