I got a little grief in the sec AD review about not using a KDF for all the random values, so I might as well do that.
On Thu, Dec 1, 2022, 17:23 Martin Thomson <[email protected]> wrote: > On Fri, Dec 2, 2022, at 03:41, Martin Duke wrote: > > Relatedly, if I roll a new QUIC version field, should I also rev the > > salt, retry key, and so on? > > I'd say that is up to you. Though some people are concerned about > crashes, it's another opportunity to break ossification. I give neither > position any particular weight. > >
