[Cryptography] Why aren’t we using SSH for everything?

Nico Williams nico at cryptonector.com
Sun Jan 4 11:29:11 EST 2015


Another option would [have been] for IPsec (and now TCPINC) to provide
anonymous channels with channel binding data that apps could bind into
app-layer authentication.

This too didn't happen.  Channel binding was first mentioned in a handwavy
manner in 1992 or so, back when CAT WG was working on RFC1508.  We didn't
get around to anything like a formal description until more than a decade
later.  That's quite late...

Nico
--
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20150104/03930296/attachment.html>


More information about the cryptography mailing list