On Thu, 26 Mar 2015, Watson Ladd wrote:
Suppose I can consistently redirect a client C to a masquerading server M. The proposed gossip mechanism will not detect this, as SCTs are only ever sent back to the server they are received from. This should be fixed by having clients gossip constantly about STHs, thus ensuring that if any honest server is contacted, the MITM is detected.
First of all, this is very unlikely and consumes a lot of resources. Second, the webserver <-> webclient is not the only path for gossip. Please have a look at the diagram on page 6 of the gossip presentation from last Monday: http://www.ietf.org/proceedings/92/slides/slides-92-trans-3.pdf Paul _______________________________________________ Trans mailing list [email protected] https://www.ietf.org/mailman/listinfo/trans
