load-balancers icon indicating copy to clipboard operation
load-balancers copied to clipboard

Published 20 hours ago verified publisher icon quicwg

Adding the description of twelve pass encryption

Open huitema opened this issue 3 years ago • 3 comments

Not really sure that we have to do that, but I did it anyhow. Also fixed a couple of random line length issues that were causing errors in xml2rfc

huitema avatar Jul 07 '22 06:07 huitema

Thanks for doing this. One comment:

I don't think the Security Considerations section here fully captures our doubts about the need for this. IIRC, the 4-pass is only vulnerable to known-plaintext attacks, which seem hard to mount here. And as you state, if the consequence is the attacker discovering that the CID is not random, it's not obvious to me that it's a serious problem.

martinduke avatar Jul 07 '22 19:07 martinduke

Per offline discussion with @huitema: we are disinclined to include this in the draft, because we don't think people will implement it. We will keep it around in case reviews demand it, but have no plans to merge.

martinduke avatar Jul 08 '22 17:07 martinduke

@martinduke the latest commit have resolved potential merge conflicts between this PR and the main branch, making it easier to "pull the PR off our back pocket" if we really have to.

huitema avatar Jul 08 '22 17:07 huitema