1 comment

[ 2.8 ms ] story [ 14.6 ms ] thread
But if a current key leaks or is broken, all future keys are broken aren't they? Inband rekey surely carries risks?

Obviously the NSA/NIST audit over this has a position. Or, I'm wrong, or both. There must be some what-you-have adjunct which can override or second factor it.