Re: Signing Set-Cookie

On Tue, Jun 7, 2022, at 08:49, Watson Ladd wrote:
> This would also apply to treating MAC as a Signature wouldn't it?

:)

That is also hard to stomach, though for a different reason and it falls short of being absolutely unacceptable.  Just.  We accept TLS PSK modes on the understanding that there are just two entities and they each know their roles (the latter part thanks to Selfie).  The same *could* apply to a "symmetric signature" scheme here.  It's a giant footgun, but this spec is a collection of footguns of varying size already, so I don't get too excited about there being one more.

Received on Tuesday, 7 June 2022 00:08:33 UTC