[14571] in cryptography@c2.net mail archive
Re: Simple SSL/TLS - Some Questions
daemon@ATHENA.MIT.EDU (Anne & Lynn Wheeler)
Tue Oct 7 16:20:39 2003
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Tue, 07 Oct 2003 13:15:18 -0600
To: EKR <ekr@rtfm.com>
From: Anne & Lynn Wheeler <lynn@garlic.com>
Cc: Anne & Lynn Wheeler <lynn@garlic.com>,
Jill Ramonsky <Jill.Ramonsky@aculab.com>, cryptography@metzdowd.com
In-Reply-To: <kj8ynwoof7.fsf@romeo.rtfm.com>
At 12:09 PM 10/7/2003 -0700, Eric Rescorla wrote:
>This doesn't provide equivalent services to TLS--no anti-replay
>service for the server.
KISS ... for the primary business requirement .... the application already
has anti-replay .... TLS ant-replay is then redundant and superfluous.
yes, it isn't existing TLS .... it is KISS TLS based on primary business
requirement ... as mentioned in original, not on existing specification
for existing implementation
http://www.garlic.com/~lynn/aadsm15.htm#19
when doing the original deployment stuff
http://www.garlic.com/~lynn/aadsm5.htm#asrn2
http://www.garlic.com/~lynn/aadsm5.htm#asrn3
there was the idea in would be used for the whole online experience. The
subsequent comments was that it got cut back to the current primary use
.... because it imposed a five-fold overhead increase (or reduced a server
service capacity by 80 percent).
Making it significantly more simple and lightweight might encourage it to
be used more extensively.
--
Anne & Lynn Wheeler http://www.garlic.com/~lynn/
Internet trivia 20th anv http://www.garlic.com/~lynn/rfcietff.htm
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
