💾 Archived View for rawtext.club › ~sloum › geminilist › 001289.gmi captured on 2020-09-24 at 01:59:01. Gemini links have been rewritten to link to archived content
-=-=-=-=-=-=-
plugd plugd at thelambdalab.xyz
Wed Jun 3 08:04:20 BST 2020
- - - - - - - - - - - - - - - - - - -
Hey,
solderpunk writes:
On Tue, Jun 02, 2020 at 10:59:23PM +0200, plugd wrote:
1.3 drastically reduces the range of permissible cryptographic
primitives which can be used. Instead of supporting dozens and dozens
of different ciphersuites with opaque names ranging from "as secure as
it gets" to "known to be broken for years", requiring careful
configuration and implementation to avoid shooting yourself in the foot
or being susceptible to downgrade attacks, 1.3 is basically foolproof.
All the legacy cruft like RC4 is gone, every availble key agreement
scheme offers perfect forward security, etc. It's definitely something
to be excited about.
Thank you for this clear explanation, this is very helpful! You'veconvinced me that requiring
= 1.3 would be a sensible move.
plugd-------------- next part --------------A non-text attachment was scrubbed...Name: signature.ascType: application/pgp-signatureSize: 487 bytesDesc: not availableURL: <https://lists.orbitalfox.eu/archives/gemini/attachments/20200603/213773ee/attachment.sig>