[145735] in cryptography@c2.net mail archive
Re: towards https everywhere and strict transport security (was:
daemon@ATHENA.MIT.EDU (=JeffH)
Wed Aug 25 23:28:55 2010
Date: Wed, 25 Aug 2010 13:47:12 -0700
From: =JeffH <Jeff.Hodges@KingsMountain.com>
To: Richard Salz <rsalz@us.ibm.com>
CC: cryptography@metzdowd.com
> A really knowledgeable net-head told me the other day that the problem
> with SSL/TLS is that it has too many round-trips. In fact, the RTT costs
> are now more prohibitive than the crypto costs.
Yes, although that's a different class of issue from the ones we're trying to
address in hasmat and keyassure.
these two drafts comprise the approach Adam Langley (of google) is presently
pursuing wrt both fast TLS startup (snapstart) and support for
NextProtocolNegotiation (during TLS handshake)..
http://tools.ietf.org/html/draft-agl-tls-nextprotoneg
http://tools.ietf.org/html/draft-agl-tls-snapstart
Note that the motivation for draft-agl-tls-nextprotoneg is so-called
websockets, which are being worked on in the IETF HYBI (hypertext
bidirectional) WG http://datatracker.ietf.org/wg/hybi/
=JeffH
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
