[Info-vax] DECserver/LAT across DECnet areas?
Arne Vajhøj
arne at vajhoej.dk
Mon Jul 24 20:06:50 EDT 2023
On 7/24/2023 7:53 PM, Scott Dorsey wrote:
> Simon Clubley <clubley at remove_me.eisner.decus.org-Earth.UFP> wrote:
>> On 2023-07-23, Scott Dorsey <kludge at panix.com> wrote:
>>> Andy Burns <usenet at andyburns.uk> wrote:
>>>> Scott Dorsey wrote:
>>>>> This is culturally very different than modern systems where everything
>>>>> is running IP and only what is on top of TCP or UDP is different.
>>>>
>>>> We're pretty close to the next stage where everything is running on top
>>>> of HTTPS, aren't we?
>>
>> Good.
>>
>>> Please don't remind me. It's a horrible idea to contemplate, isn't it?
>>
>> From a security point of view, it (or something similar) is a really
>> good idea.
>
> Are you sure about that? It sure seems like putting all your eggs into
> one basket to me.
I will assume you are really talking about SSL.
Tt is only the TLS protocol itself that is all eggs in one
basket.
For the underlying algorithms then:
* TLS offers multiple choices for each category of algorithm
* an alternative algorithm would use the same algorithms and be
just as vulnerable if a problem in an algorithm was found
> Not to mention the added overhead from all those layers.
Are those layers that bad?
Sure SSL handshake takes time, but that is not due to the layers
but due to the nature of the key exchange.
Arne
More information about the Info-vax
mailing list