Mark Andrews wrote:
>>>http://tools.ietf.org/html/draft-dempsky-dnscurve-00
>>
>>As I read the draft, it seems to me that DNSCurve without Curve
>>(that is, with 96 bit nonce of DNSCurve as an extended message
>>ID without elliptic curve cryptography) is secure enough.
> Except from players that can see the query.
That's not a new cryptographical problem.
As DNSCurve protection is like DH, it is subject to MitM attacks,
which is no different from simple nonce.
Masataka Ohta
_______________________________________________
Ietf mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ietf
