[TLS] Re: TLS client puzzles revival

I'm not very excited about this DoS approach. Many user-facing clients run on battery-constrained devices, so burning CPU on a hash puzzle in those contexts is unappealing. Before we resort to mitigating a server's high energy cost by increasing energy cost across the board, we should exhaust avenu

[TLS] TLS client puzzles revival

Dear TLS working group, Given recent experiences by some parties of DDoS attacks that abuse the TLS handshake to force a server into spending significant computational resources (see Eirik Øverby's talk at https://www.youtube.com/watch?v=pBNMWvfL05g for an example), we have decided to give adding

[TLS] Re: Genart last call review of draft-ietf-tls-svcb-ech-06

Good for me Arnaud Taddei Global Security Strategist | Enterprise Security Group mobile: +41 79 506 1129 Geneva, Switzerland arnaud.tad...@broadcom.com | broadcom.com > On 30 Oct 2024, at 22:18, Ben Schwartz > wrote: > > Hi Ben, > > I've proposed a text c