Ralph Holz <ralph-cryptometz...@ralphholz.de> writes:

>But for right now, what options do we have that are actually implemented
>somewhere? Take SSL. CBC mode has come under pressure for SSL (CRIME, BEAST,
>etc.), and I don't see any move towards TLS > 1.0.

http://tools.ietf.org/html/draft-gutmann-tls-encrypt-then-mac-02 fixes all of
these, I just can't get any traction on it from the TLS WG chairs.  Maybe
they're following
http://svn.cacert.org/CAcert/CAcert_Inc/Board/oss/oss_sabotage.html :-).


The cryptography mailing list

Reply via email to