On Monday, August 8, 2016, Martin Rex <[email protected]> wrote: > > The urban myth about the advantages of the RSA-PSS signature scheme > over PKCS#1 v1.5 keep coming up. >
Do you think we'll see real-world MitM attacks against RSA-PSS in TLS similar to those we've seen with PKCS#1v1.5 signature forgery, such as BERserk?
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
