[cryptography] preventing protocol failings

James A. Donald jamesd at echeque.com
Tue Jul 12 20:32:42 EDT 2011


On 2011-07-13 3:10 AM, Hill, Brad wrote:
>     Recognize in advance that users will demand an insecure mode and give it to them.


I don't see any demand for an insecure mode for tor hidden services, and 
though SSH provides an insecure mode, no one uses it.

If users demand an insecure mode, it is because your secure mode has bad 
user interface.




More information about the cryptography mailing list