Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

The main thing I would want from a Microsoft browser is actually keeping up to date with the latest in security protocols and crypto algorithms. IE has always been several years behind everyone else in this area, which just meant developers had to keep their websites less secure just to be able to serve IE users as well. That needs to end.

I don't necessarily want Microsoft to be a leader in this area (not sure I'd trust Microsoft with any new security protocols anyway), but at the very least it should be a fast-follower. Looking forward to Microsoft adopting ChaCha20-Poly1305 or at least helping to speed up the standardization at IETF and then adopt that standard if their excuse right now is that they can't adopt "non-finalized standards".



The agl draft is actually an out-of-date, expired first draft, but it did the job to get it kickstarted! https://datatracker.ietf.org/doc/draft-agl-tls-chacha20poly1...

AEAD_CHACHA20_POLY1305 is however about to be an RFC (via CFRG) - https://datatracker.ietf.org/doc/draft-irtf-cfrg-chacha20-po... - , and the proper TLS WG draft will essentially just link to that: https://datatracker.ietf.org/doc/draft-mavrogiannopoulos-cha...




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: