On 1/19/2017 7:41 AM, Jarkko Sakkinen wrote: > > I actually think that the very best solution would be such that > sessions would be *always* lease based. So when you create a > session you would always loose within a time limit. > > There would not be any special victim selection mechanism. You > would just loose your session within a time limit.
I worry about the time limit. I have a proposed use case (policy signed) where the user sends the session nonce along with a "payment" to a vendor and receives back a signature authorization over the nonce. The time could be minutes or even hours. ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, SlashDot.org! http://sdm.link/slashdot _______________________________________________ tpmdd-devel mailing list tpmdd-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tpmdd-devel
