[cryptography] PBKDF2 + current GPU or ASIC farms = game over for passwords (Re: TLS2)

Florian Weimer fw at deneb.enyo.de
Tue Oct 1 05:22:40 EDT 2013

> Which leaves open the question (in my mind) as to whether to require this:
> "Both end points must authenticate each other."

Keep in mind that the client side was deliberately crippled in
browsers for privacy reasons.  Support used to be much better—you
could transparently created a client certificate which would
automatically be used for future TLS handshakes.

More information about the cryptography mailing list