From: Nikos Mavrogiannopoulos [mailto:n...@redhat.com] > If you worry about client impersonation there is TLS with SRP > (RFC5054), which can also provide protection against server > impersonation on the SRP-RSA mode. The latter is only defined over FF, > i.e, there is no EC-based version of SRP defined for TLS.
I worry most about client impersonation, because that is easy to scale if there is a server breach. I agree that the SRP-RSA method defends against this, but I don't feel that it will make it into the IoT space. -- Tony _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
