Yaron Sheffer writes:
> >> Alternatively it would simplify things immensely if we mandate that SPIs
> >> be random for implementations that support QCD (possibly only on the
> >> gateway side). Can we do it without having to "update RFC 4306"?
> >
> > I think it's enough to require this of the toke
Hi Yoav,
I'm OK with discussing these issues later, now that they're on the
Tracker. Except for one - see below.
On 09/05/2010 09:31 PM, Yoav Nir wrote:
On Sep 5, 2010, at 11:03 AM, Yaron Sheffer wrote:
[snip]
- 5.1: this method is indeed problemmatic if SPIi/SPIr pairs are
repeated wi
On Sep 5, 2010, at 11:03 AM, Yaron Sheffer wrote:
> In general, the draft is in good shape. But IMO, we have one major
> security issue left: the dependence on SPI values which potentially come
> from a small space, i.e. may be repeated in normal operation, or may be
> coerced into repeating.
