On Sun, Mar 13, 2016 at 12:04 PM, Bill Cox <waywardg...@google.com> wrote: > > IMO, 0-RTT is the most important new feature in TLS 1.3 ... Speed really > _is_ that important. >
I just want to be super explicit on this. There is a trade off to be made here between fast and loose Vs security and safety. My take is that speed absolutely is not so important that forward-secrecy for user requests, or replay safety for applications should be compromised. Even better speed benefits can be had by using persistent connections, which incidentally are also a little more robust against traffic analysis. -- Colm
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
