On Tue, May 30, 2017 at 2:38 PM, Victor Vasiliev wrote:
> Thank you for your analysis! I appreciate the attention to the security
> properties of the 0-RTT requests, as it is the more delicate part of the
> protocol. It took me a while to get through the entire review, and there
> are
> many th
On Tuesday, May 30, 2017 05:38:02 pm Victor Vasiliev wrote:
> TLS isn’t a magical “transport security solution”, it provides a very specific
> set of explicit security guarantees to the applications that use it. It can
> be
> used as a building block for the secure systems, but at the end of the
Eric Rescorla wrote:
> On Tue, May 23, 2017 at 9:34 PM, Martin Rex wrote:
>>
>> This change _still_ prohibits the server from negotiating these algorithms
>> with TLSv1.1 and below.
>>
>> Could you elaborate a little on where and why you see a problem with this?
>>
>
> For starters, TLS 1.3 has a
