+1 would much like to add a section on formal methods to my online book: http://www.subspacefield.org/security/security_concepts.html
Have not updated in years, so does not reflect everything I've learned since becoming too busy to write. Lately been doing a lot of TLS research and summarizing (38 pages worth) and that is a hot mess of prehistoric complexity that is badly in need of an update. Back in the late 90s I was astounded they didn't even use SPIN/murphi or another FSA to verify the protocol, which bespeaks a gap in education between practicioners and academics which your doc could fill. Worth reading: http://blog.cryptographyengineering.com/2012/09/on-provable-security-of-tls-part-1.html http://blog.cryptographyengineering.com/2012/09/on-provable-security-of-tls-part-2.html -- http://www.subspacefield.org/~travis/ I'm feeling a little uncertain about this random generator of numbers.
pgpP7Ayg2bhgK.pgp
Description: PGP signature
_______________________________________________ langsec-discuss mailing list langsec-discuss@mail.langsec.org https://mail.langsec.org/cgi-bin/mailman/listinfo/langsec-discuss
