we've posted a new revision of tcpcrypt: https://tools.ietf.org/html/draft-bittau-tcpinc-tcpcrypt-04
it takes advantage of the negotiation mechanisms of TCP-ENO[1], and is half the length of our previous drafts. because ENO itself provides the means for negotiating among future versions of a TCPINC protocol, we've streamlined tcpcrypt in the interest of easing analysis and implementation. for example, RSA has been removed as a key-exchange method, leaving a choice among three, uniformly-handled schemes based on ECDH ciphers. (one of these, Curve25519, is currently specified with the help of a normative reference to an I-D. this key-exchange option could simply be removed if no RFC is published in time.) [1] https://tools.ietf.org/html/draft-ietf-tcpinc-tcpeno-00 _______________________________________________ Tcpinc mailing list [email protected] https://www.ietf.org/mailman/listinfo/tcpinc
