Re: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Rev

ietf

Re: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)

2014-08-22 14:52:05

Nico,

On Fri, Aug 22, 2014 at 12:25 AM,  <l(_dot_)wood(_at_)surrey(_dot_)ac(_dot_)uk> 
wrote:

Okay, so with opportunistic security, all a man in the middle has to do is 
block any communications he can't decrypt, and it automatically downgrades to 
select something he can break?

Ah, there's the opportunity. Got it.

Eh?  The idea is to be downgrade resistant.

Nico

It's nice if the OS mechanism is downgrade resistant, but that is notrequired by

the current set of design principles.

Steve

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
RE: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), (continued) RE: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), l.wood Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Viktor Dukhovni RE: [saag] Is opportunistic unauthenticated encryption a waste of time?, Bernard Aboba Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Theodore Ts'o RE: [saag] Is opportunistic unauthenticated encryption a waste of time?, Christian Huitema Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Nico Williams RE: [saag] Is opportunistic unauthenticated encryption a waste of time?, Bernard Aboba Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Stephen Farrell RE: [saag] Is opportunistic unauthenticated encryption a waste of time?, Bernard Aboba Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Viktor Dukhovni Re: [saag] Adept Encryption: Was: DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Stephen Kent <= RE: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Christian Huitema Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Nico Williams Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Stephen Farrell Re: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Scott Kitterman

Previous by Date:	Re: [saag] : Review of: Opportunistic Security -03 preview for comment, Stephen Kent
Next by Date:	Re: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Stephen Kent
Previous by Thread:	Re: [saag] Is opportunistic unauthenticated encryption a waste of time?, Viktor Dukhovni
Next by Thread:	RE: Adept Encryption: Was: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Christian Huitema
Indexes:	[Date] [Thread] [Top] [All Lists]