This doesn't provide equivalent services to TLS--no anti-replay service for the server.
KISS ... for the primary business requirement .... the application already has anti-replay .... TLS ant-replay is then redundant and superfluous.
yes, it isn't existing TLS .... it is KISS TLS based on primary business requirement ... as mentioned in original, not on existing specification for existing implementation
http://www.garlic.com/~lynn/aadsm15.htm#19
when doing the original deployment stuff http://www.garlic.com/~lynn/aadsm5.htm#asrn2 http://www.garlic.com/~lynn/aadsm5.htm#asrn3
there was the idea in would be used for the whole online experience. The subsequent comments was that it got cut back to the current primary use .... because it imposed a five-fold overhead increase (or reduced a server service capacity by 80 percent).
Making it significantly more simple and lightweight might encourage it to be used more extensively.
--
Anne & Lynn Wheeler http://www.garlic.com/~lynn/
Internet trivia 20th anv http://www.garlic.com/~lynn/rfcietff.htm
--------------------------------------------------------------------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]
