RE: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Rev


no, it's at encyption above a baseline. assume mitm can't crack maximum 
level,,but can crack baseline and above. if maximum can't be negotiated because 
mitm prevents it , and less is settled for... well. may as well have fallen 
back to clear.

Lloyd Wood
http://about.me/lloydwood
________________________________________
From: Nico Williams <nico(_at_)cryptonector(_dot_)com>
Sent: Friday, 22 August 2014 3:42:15 PM
To: Wood L  Dr (Electronic Eng)
Cc: ietf(_at_)ietf(_dot_)org; saag(_at_)ietf(_dot_)org
Subject: Re: [saag] Adept Encryption: Was: DANE should be more prominent (Re: 
Review of: Opportunistic Security -03 preview for comment)

On Fri, Aug 22, 2014 at 12:25 AM,  <l(_dot_)wood(_at_)surrey(_dot_)ac(_dot_)uk> 
wrote:

Okay, so with opportunistic security, all a man in the middle has to do is 
block any communications he can't decrypt, and it automatically downgrades to 
select something he can break?

Ah, there's the opportunity. Got it.


Eh?  The idea is to be downgrade resistant.

Nico
--

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), (continued) Re: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Nico Williams Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Dave Crocker Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Stephen Farrell Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Phillip Hallam-Baker Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Viktor Dukhovni RE: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), l.wood Re: [saag]: Review of: Opportunistic Security -03 preview for comment, Viktor Dukhovni Re: [saag]: Review of: Opportunistic Security -03 preview for comment, Paul Wouters Re: [saag] : Review of: Opportunistic Security -03 preview for comment, Stephen Kent Re: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Nico Williams RE: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), l.wood <= Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Viktor Dukhovni RE: [saag] Is opportunistic unauthenticated encryption a waste of time?, Bernard Aboba Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Theodore Ts'o RE: [saag] Is opportunistic unauthenticated encryption a waste of time?, Christian Huitema Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Nico Williams RE: [saag] Is opportunistic unauthenticated encryption a waste of time?, Bernard Aboba Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Stephen Farrell RE: [saag] Is opportunistic unauthenticated encryption a waste of time?, Bernard Aboba Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Stephen Farrell Message not available Re: Is traffic analysis really a target (was Re: [saag] Is opportunistic unauthenticated encryption a waste of time?), Eric Burger

RE: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)