On Jul 11, 2017, at 4:31 PM, Stephen Farrell <[email protected]> wrote: > I'd bet folks would invent proprietary > ways of avoiding detection, that deviate from the "standard" > and that perhaps make crypto worse all around. Say by deriving > secrets from some function f(exfiltrated-secret, time, count) > for a small counter or some such and having the decryptor of > the wiretapped packets hunt a bit for the right key.
Hm, well, but that would be catnip for security researchers, particularly if it weakened the key. But yeah, you're right, that does make detecting the attack possibly impractical aside from as a large research project.
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
