Most of us have Key Vaults and related management systems that are so (OVER in my opinion) secure, that this has never been a problem for us (in reality ---- NOT in theory or conversation).
-----Original Message----- From: TLS [mailto:tls-boun...@ietf.org] On Behalf Of Daniel Kahn Gillmor Sent: Saturday, July 15, 2017 7:19 AM To: Ilari Liusvaara <ilariliusva...@welho.com>; Dobbins, Roland <rdobb...@arbor.net> Cc: IETF TLS <tls@ietf.org> Subject: Re: [TLS] draft-green-tls-static-dh-in-tls13-01 On Sat 2017-07-15 11:55:44 +0300, Ilari Liusvaara wrote: > Oh, and like any backdoor, this backdoor too has variety of security > problems. And your adversaries would absolutely love to be able to > exploit _you_ using these problems, as that would make their lives > much easier. I'd like to hear from the people who are doing full-take network capture within their datacenters about how they protect the security of the internal decryption systems. It certainly sounds like a tempting target for any adversary interested in datacenter operations. --dkg The information contained in this communication is highly confidential and is intended solely for the use of the individual(s) to whom this communication is directed. If you are not the intended recipient, you are hereby notified that any viewing, copying, disclosure or distribution of this information is prohibited. Please notify the sender, by electronic mail or telephone, of any unintended receipt and delete the original message without making any copies. Blue Cross Blue Shield of Michigan and Blue Care Network of Michigan are nonprofit corporations and independent licensees of the Blue Cross and Blue Shield Association. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
