Rafa Marín López writes:
> Hi John:
> - 2) Use PSK with ECDHE (similar to psk_dhe_ke in TLS)
>
> Let me also add here, as a reference, IKEv2. Basically, section 1.3.2 in RFC
> 7296 shows a 1-RTT exchange including DH exchange and nonces to regenerate the
> IKE security association.
>
> -
John Mattsson writes:
> Tero Kivinen wrote:
>
> > and doing Diffie-Hellman for each of them would be too costly
>
> I agree that was true in the past. Do you think that is still the
> case for an optimized implementation of modern algorithms running on
> new CPUs? As I
