It seems that with many new cases, the request duration exceeds sometimes the normalized request time. This means that an attacker could gain some knowledge while timing the requests:
has a key been added?
is it a fake request?
The solution is to either:
increase the normalized request time
run more instances so that the request time is below the normalized request time
It seems that with many new cases, the request duration exceeds sometimes the normalized request time. This means that an attacker could gain some knowledge while timing the requests:
The solution is to either: