> Some time this year I'll introduce key rotation by default into OpenSSL, which
Great :) > use static keys. Sloppy implementations are not a problem with STEKs, the > same sloppy implementations will just as likely have insecure caches. The protocol design should avoid setting traps for the unwary. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
