@bascule What definition of “forward secrecy” are you using? Do a DH exchange & sign the result with the cert RSA key.
TLS has a lot of problems beyond the fact it's a poorly designed band-aid covered hack. For example, it doesn't provide forward secrecy
-
-
-
@tqbf both passive and active forward secrecy, as described here: http://curvecp.org/security.html -
@bascule uh… like TLS DHE? -
@tqbf perhaps I'm mistaken -
@bascule I might be misreading this page too, but think about how DHE works - transient key, but uses cert to break tie to avoid MITM. -
@tqbf I believe active forward secrecy depends on both parties using a transient key -
@bascule … both parties in DHE do use a transient key. :) - 3 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.