[Cryptography] open questions in secure protocol design?

Ben Laurie benl at google.com
Tue May 26 09:50:18 EDT 2015

On 26 May 2015 at 14:44, Stephen Farrell <stephen.farrell at cs.tcd.ie> wrote:

> On 26/05/15 14:35, Ben Laurie wrote:
> > The way CT works is neither 1TCS nor agility - if you want to change
> > ciphersuite, you start a new log. So, it seems there are other parts of
> the
> > design space...
> >
> Well yes and no. Yes, CT handles this differently from e.g. TLS and
> that's fine. No, in that 1TCS is just a broken concept and hence is
> not IMO part of any rational design space in the real world. 1TCS is
> part of the rhetorical landscape but not a real design choice.

OK, but that doesn't remove the point that there are, it seems, options
other than agility.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20150526/be484ff9/attachment.html>

More information about the cryptography mailing list