Juliusz Chroboczek writes:
>> The info model has the flags that say whether or not a key is used for
>> signing (or validating). A key can be "disabled" by setting the flags to
>> "false" to indicate it's not used for anything. And keys can be
>> added/deleted.
>
> There's a number of
>> - we compute HMAC for each TLV, rather than just once for the whole
>> packet, which, again, makes us vulnerable to DoS;
> ugh.
Don't worry, it's an easy fix.
>> - we don't support key rotation.
> Sigh.
The data structures are designed so it'll be easy, the problem is
designing an