Snikket on Nostr: npub10yr0f…z3zyf Indeed! While it's an improvement from back when people just ...
npub10yr0fek07txxvpktcjhd48lzy5ls3u09t03zkc3fhd70c2hhxc2syz3zyf (npub10yr…3zyf)
Indeed! While it's an improvement from back when people just didn't bother with TLS because of the cost/complexity of certificates, this new attack demonstrates that just having TLS with strong ciphers is no longer enough. We still need to keep ahead of attackers.
We look forward to rolling out channel binding for TLS 1.3, which is a neat solution to this problem for XMPP.
Indeed! While it's an improvement from back when people just didn't bother with TLS because of the cost/complexity of certificates, this new attack demonstrates that just having TLS with strong ciphers is no longer enough. We still need to keep ahead of attackers.
We look forward to rolling out channel binding for TLS 1.3, which is a neat solution to this problem for XMPP.