Hiya, On 22/10/2019 19:55, Christian Huitema wrote: > In particular, the analysis showed that > random padding was not a good way to achieve privacy.
Sure. But I'm not suggesting the kind of random padding that was under discussion then. My suggestion was to pad to a multiple of 32 octets and with a random addition of 0,1,2... or more 32 octet blocks of zeros. Yes, some work would be needed to pick the right block size (32 might be a little small maybe) and to pick a (non-uniform) distribution from which to randomly select how many additional blocks to send. But like I said, I'm sure there're lots of different algorithms that could work for this, and whichever we picked would need some checking vs. reality of course. Cheers, S.
0x5AB2FAF17B172BEA.asc
Description: application/pgp-keys
signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
