tls-visibility is enemy action. Discuss.
-
-
FS is relative to the secret (STEK vs Privkey). In non-DH resumption, the entire resumed connection is not FS wrt STEK, not just 0-RTT data
-
In TLS1.3 there is no non-DH resume though, only the 0-RTT data misses FS, but is also the most critical data.
- 7 more replies
New conversation -
-
-
5/ The wireshark folks will probably just export the session key with an extension anyway.
-
I know
@Lekensteyn has been doing some work in that area. And I’ve heard tell of cool eBPF tricks to make obtaining sessions less invasive. - 2 more replies
New conversation -
-
-
At least for me, I see 0-RTT as a lost cause - tls-vis and its ilk can be stopped, not much hope for improving 0-RTT, at least for now.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
I see a lot of emotional affiliation based on who is making the proposals. We like the Gpeople... but who are these bankers?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.