> > I wouldn't mind if it had been called Pretty Good Forward Secrecy instead,
> > but it really is a lot better than regular public key.
> My point was that the name is misleading and causes people to look for more
> than is there.

There doesn't seem to be much downside to just calling it "Forward
Secrecy" rather than "Perfect Forward Secrecy".  We all seem to agree
that it isn't perfect, and that it is a step forward in security, at a
moderate cost in latency and performance.

The cryptography mailing list

Reply via email to