On Fri, 1 Nov 2024 at 11:50, Bas Westerbaan <bas= 40cloudflare....@dmarc.ietf.org> wrote:
> Here we're not accounting for the new bottleneck on server upload which > these post-quantum signatures add. But that's a bandwidth issue — not a > compute one. > On top of that, the HRR/ClientHello Cookie extension already in TLS1.3 can also provide this kind of effect: the server can require the client to echo up to 16KB of data in its retry. This means an equivalent to the "Echo Client Puzzle Type" in this draft is already deployable today. Cheers, Joe
_______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
