Ralph Holz <ralph-cryptometz...@ralphholz.de> writes: >But for right now, what options do we have that are actually implemented >somewhere? Take SSL. CBC mode has come under pressure for SSL (CRIME, BEAST, >etc.), and I don't see any move towards TLS > 1.0.
http://tools.ietf.org/html/draft-gutmann-tls-encrypt-then-mac-02 fixes all of these, I just can't get any traction on it from the TLS WG chairs. Maybe they're following http://svn.cacert.org/CAcert/CAcert_Inc/Board/oss/oss_sabotage.html :-). Peter. _______________________________________________ The cryptography mailing list cryptography@metzdowd.com http://www.metzdowd.com/mailman/listinfo/cryptography