Tony Arcieri wrote: [ Charset UTF-8 unsupported, converting... ] > On Monday, August 8, 2016, Martin Rex <m...@sap.com> wrote: > > > > The urban myth about the advantages of the RSA-PSS signature scheme > > over PKCS#1 v1.5 keep coming up. > > Do you think we'll see real-world MitM attacks against RSA-PSS in TLS > similar to those we've seen with PKCS#1v1.5 signature forgery, such as > BERserk?
BERserk is an implementation defect, not a crypto weakness. -Martin _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
