] All because we do not have a stateless cryptosystem that ] works. It may very well be that such a demand is ] impossible. Stateless cryptosystems can send a message ] and not only not prenegotiate a session key, but tolerate ] large number of dropped packets. Replay attacks need to ] be suppressed, but packets need to be able to survive ] high latencies. CPU load needs to be kept reasonable, ] but no message can rely on the asymmetric results of ] another. Interesting response to that recent article on weaknesses in linux crypto packages... Response to Linux Crypto Packages Demolished |