On Thu, Sep 22, 2016 at 8:53 PM, Geoffrey Keating <geo...@geoffk.org> wrote:

> Ryan Carboni <rya...@gmail.com> writes:
>
> > in the internet of things, DH is actually
> > less secure than normal public key exchange. Servers are more likely to
> > have entropy than embedded devices.
>
> I think that's backwards; in a 'normal' public key exchange, it is the
> client that generates the secret key, the server contributes no
> randomness.
>

Nit: no private randomness. It provides freshness in the form of
ServerRandom and in
TLS that's specified as random.

-Ekr


>
> _______________________________________________
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls
>
_______________________________________________
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls

Reply via email to