* Replay attack is avoided by using a challenge/ response pair only once. 2^32 combinations possible for 32 byte challenge.
How is that enforced? * Server is authenticated by its certificate. An attacker will not be able to do so. Did I miss where you explained this?
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
