On Wed, Nov 13, 2024, 3:30 AM Muhammad Usama Sardar < [email protected]> wrote:
> On 12.11.24 23:52, Watson Ladd wrote: > > I think anyone implementing would have discovered them. > > Is David Benjamin the *first* and *only* person in the world implementing > DTLS 1.3? If not, why were others not able to discover those issues? So, I > think we should be thankful to him for his careful analysis rather than > giving statements like the above devaluing his work. > > From a formal perspective, I find his work insightful. In the formal > analysis, we typically do not model KeyUpdate part. My takeaway was that we > need to include that as well. > I'm not devaluing his work, merely expressing surprise that no one else seems to have run into all these issues. It's true some of them require some careful thinking to find, but it's not true that we needed formal analysis to see that some of this text just doesn't work. My email was a reply to the idea that FATT should take a look. Maybe but let's not pretend it's a panecea, particularly with text to model questions. > > Regards, > > Usama >
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
