[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Suggestion for SOI wrt PFS
In message <Pine.LNX.4.33.0203281919090.1204-100000@janpc-home.cisco.com>, Jan
Vilhuber writes:
>
>Then you'd have to reauthenticate, which you may not want to (public
>key operation and all). At least that's the only difference I can
>see. This is somewhat lighter weight than a full phase 1.
>
>[ I haven't thought this proposal through yet, so I'm not coming down
>on one side or the other ;) ]
The argument I made a while ago, about caching the results of a
cert chain validation hold for this case too.
-Angelos