What do you think about adding a counter (or two) to the SSL structure, to count every time an alert is sent, and/or every time a crypto operation fails?
Wouldn't this help make it easier to detect (and then prevent) multi-message-timing attacks? -- Principal Security Engineer Akamai Technology Cambridge, MA
