undefined | Better HN

0 pointsfunkymike7y ago0 comments

In order to implement ETS they already have to compromise the endpoint to make the TLS 1.3 implementation use static keys, right?

0 comments

cbsmith7y ago

Yeah, but it's a means to an end, not the end.

The assumptions that TLS 1.3 is based around are in direct conflict with the requirements of the secure environment they operate in.

This isn't some evil thing... a cryptographic protocol is a part of a trusted system, and whether it is appropriate for a particular context has to do with the design of the trusted system.

j / k navigate · click thread line to collapse

0 pointsfunkymike7y ago0 comments

In order to implement ETS they already have to compromise the endpoint to make the TLS 1.3 implementation use static keys, right?

0 comments

cbsmith7y ago

Yeah, but it's a means to an end, not the end.

The assumptions that TLS 1.3 is based around are in direct conflict with the requirements of the secure environment they operate in.

This isn't some evil thing... a cryptographic protocol is a part of a trusted system, and whether it is appropriate for a particular context has to do with the design of the trusted system.

j / k navigate · click thread line to collapse