On Tuesday, December 15, 2015 11:11:36 pm Martin Thomson wrote: > On 16 December 2015 at 15:08, Dave Garrett <davemgarr...@gmail.com> wrote: > > We could just make the threshold a configurable parameter, with > > default/maximum at 2^32 bytes. Each endpoint could just provide its > > threshold in a new extension. Both get to specify what they want and it > > could be lowered arbitrarily for testing or panic fix. > > That sounds more complex than the current option.
It's the difference between one signal in the handshake followed by predictable rekeying and an arbitrary number of signals at arbitrary points after the handshake. Dave _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls