TLS has a lot of problems beyond the fact it's a poorly designed band-aid covered hack. For example, it doesn't provide forward secrecy
@tqbf both passive and active forward secrecy, as described here: http://curvecp.org/security.html
-
-
@bascule uh… like TLS DHE? -
@tqbf perhaps I'm mistaken -
@bascule I might be misreading this page too, but think about how DHE works - transient key, but uses cert to break tie to avoid MITM. -
@tqbf I believe active forward secrecy depends on both parties using a transient key -
@bascule … both parties in DHE do use a transient key. :) -
@bascule Google made a big fuss about pfs http://bit.ly/15NMEJh -
@movingtarget I guess I completely missed that. Cool beans,@agl__ /cc@tqbf - 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.