That seems like a bit of circular reasoning. We use RFC 6091 because it’s the be... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

teddyh on July 10, 2016 | parent | context | favorite | on: Rustls: new, modern TLS library written in Rust

That seems like a bit of circular reasoning.

We use RFC 6091 because it’s the best fit for our problem, and allows us to avoid the needless complexity of X.509 certificates, which has caused many bugs in the past (in essentially all TLS libraries).

mcpherrinm on July 11, 2016 [–]

Using an obscure feature of one TLS library seems like a bad strategy for avoiding bugs.

If compatibility doesn't matter, I'd probably use something less crufty, like http://noiseprotocol.org/

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact