[OpenID] D-H vs SSL
Hans Granqvist
hans at granqvist.com
Thu Mar 19 05:57:17 UTC 2009
> ... DH over SSL is not something we can
> completely remove in the next revision despite it being redundant.
But it's not redundant, is it?
TLS is transport layer security and the negotiated secrets (e.g., D-H keys) are
only to be used *inside* the transport layer.
The OpenID Diffie-Hellman key agreement is exactly the opposite: a secret
to be used *outside* the transport layer.
To make these secrets visible or to introduce dependencies cross layer
boundaries
quickly complicates protocol security risk assessment analysis.
Hans
More information about the general
mailing list