Eric Rescorla wrote:
Part of the problem here is that any existing protocol has benefitted from a lot of free cryptanalysis from people hoping to get publications out of breaking it. But that's a lot less likely for a new protocol which is similar to, but not exactly the same as an existing protocol.
Right. The incentive system of cryptanalysis publication provides a built-in method for continual improvement. Plus you'll get a lot more attention if you break TLS than if you break some unknown technology that no one uses.
As always, incentives matter. /psa
smime.p7s
Description: S/MIME Cryptographic Signature
