I think it's a bit unfair to pretend that TLS replay would be the same as having... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

fyi1183 on Jan 31, 2018 | parent | context | favorite | on: Show HN: A Decentralized StatusPage on IPFS

I think it's a bit unfair to pretend that TLS replay would be the same as having a not entirely updated IPNS record. The threat models are very different.

The corresponding attack against IPNS would be if the attacker could make your perspective of the world go backwards, and that is prevented by the sequence number.

vertex-four on Jan 31, 2018 [–]

Indeed, but TLS doesn't have the problem of replay at all (we hope), so IPNS is by design susceptible to a threat that the traditional internet is not in the case that your connection is untrusted.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact