On 10/28/2013 05:00 PM, Ben Laurie wrote: > You might want to look at the cleartext portions of the TLS handshake.
Actually, I'd like to suggest we don't shift the discussion here back to better use of crypto. Let's assume that we do get better/wider deployment of TLS 1.3 with a PFS ciphesuite for all the various protocols where that's tractable. And assume TLS 1.3 hides a lot more of the handshake as planned. After that's done, *then* what do we want/need to do about traffic analysis? That's a question I'd like to see discussed and Christian's text is helpful there (as are Brian's and Hannes' drafts). Cheers, S. _______________________________________________ perpass mailing list [email protected] https://www.ietf.org/mailman/listinfo/perpass
