[Cryptography] Is it time for a revolution to replace TLS?

[Salz, Rich]

> For tinc (a VPN daemon), I've been working on a simplified version of TLS[1], that is specifically targeted at peer-to-peer communication, where both peers have each other's public key beforehand. This removes the whole X.509 certificate mess from the protocol

How does it differ from SSH, and why?

	/r$

--  
Principal Security Engineer
Akamai Technologies, Cambridge, MA
IM: rsalz at jabber.me; Twitter: RichSalz