Open mikedilger opened 1 month ago
MACs are your friend. Secure "channels" are notoriously hard to reason about cryptographically, but MACs aren't, so we'd avoid a class of errors if we just used MACs instead of doing AUTH inside a supposedly secure channel.
MACs are your friend. Secure "channels" are notoriously hard to reason about cryptographically, but MACs aren't, so we'd avoid a class of errors if we just used MACs instead of doing AUTH inside a supposedly secure channel.