Here is something I wrote about a possible NSA attempt to weaken TLS security: https://sockpuppet.org/blog/2015/08/04/is-extended-random-malicious/ …
Of note: since your write-up, several TLS impls have isolated their "on-the-wire" RNG/DRBG instances from "for secrets" instances.
-
-
BouncyCastle was first I think, and attributed your post when I asked about it, if I'm not mistaken.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.