Simple SSL/TLS - Some Questions
Anne & Lynn Wheeler
lynn at garlic.com
Tue Oct 7 15:15:18 EDT 2003
At 12:09 PM 10/7/2003 -0700, Eric Rescorla wrote:
>This doesn't provide equivalent services to TLS--no anti-replay
>service for the server.
KISS ... for the primary business requirement .... the application already
has anti-replay .... TLS ant-replay is then redundant and superfluous.
yes, it isn't existing TLS .... it is KISS TLS based on primary business
requirement ... as mentioned in original, not on existing specification
for existing implementation
http://www.garlic.com/~lynn/aadsm15.htm#19
when doing the original deployment stuff
http://www.garlic.com/~lynn/aadsm5.htm#asrn2
http://www.garlic.com/~lynn/aadsm5.htm#asrn3
there was the idea in would be used for the whole online experience. The
subsequent comments was that it got cut back to the current primary use
.... because it imposed a five-fold overhead increase (or reduced a server
service capacity by 80 percent).
Making it significantly more simple and lightweight might encourage it to
be used more extensively.
--
Anne & Lynn Wheeler http://www.garlic.com/~lynn/
Internet trivia 20th anv http://www.garlic.com/~lynn/rfcietff.htm
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list