There's been some drama in the TLS WG. I wrote it up. https://www.cs.uic.edu/~s/musings/tls13-enterprises/ …
-
-
Maybe one could use a NIZK to prove knowledge of PRNG inputs used for DH sk, but who wants to verify a proof each TLS connection?
-
That's a smart idea. In practice it can enough that tools like SSLabs do it occasionally. That's how endpoint security is /really/ enforced.
- 6 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.