Hi Thom, On 17.03.26 10:06, Thom Wiggers wrote:
I wish we’d be mandating proper forward secrecy, but that’s a bit tough to truly mandate.
Could you explain a little why it is tough to mandate?
(Though it should be noted that most _do_ currently assume actual ephemeral key exchange.)
Since you write "most", I was wondering if you are aware of any formal analysis that does not make this assumption. If possible, a pointer would be great. Thanks.
Best regards, -Usama
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
