me.dm is one of the many independent Mastodon servers you can use to participate in the fediverse.
Ideas and information to deepen your understanding of the world. Run by the folks at Medium.

Administered by:

Server stats:

1.3K
active users

#rfc

6 posts3 participants4 posts today

RFC 9787: Guidance on End-to-End Email Security, D. K. Gillmor, Ed., et al., rfc-editor.org/info/rfc9787 #RFC End-to-end cryptographic protections for email messages can provide useful security. However, the standards for providing cryptographic protection are extremely flexible. That flexibility can trap users and cause surprising failures. This document offers guidance for Mail 1/3

RFC 9810: Internet X.509 Public Key Infrastructure -- Certificate Management Protocol (CMP), H. Brockhaus, et al., rfc-editor.org/info/rfc9810 #RFC This document describes the Internet X.509 Public Key Infrastructure (PKI) Certificate Management Protocol (CMP). Protocol messages are defined for X.509v3 certificate creation and management. CMP provides interactions between client 1/3

www.rfc-editor.orgInformation on RFC 9810 » RFC Editor
Replied in thread

@b4ux1t3 @zachweinersmith.bsky.social I guess this has to do with no clear separation between data and instructions? (☎️ The 90s are calling and want their bugs back.) If untrusted sources could be marked as un-actionable data, even an LLM could understand that, for example by special boundary tokens. Or, even more high-level, using the concept of multipart (w3.org/Protocols/rfc1341/7_2_M) messages which use a pseudo-random string to tell data chunks apart.
#security #llm #rfc

www.w3.orgRFC1341(MIME) : 7 The Multipart content type

RFC 9807: The OPAQUE Augmented Password-Authenticated Key Exchange (aPAKE) Protocol, D. Bourdrez, et al., rfc-editor.org/info/rfc9807 #RFC This document describes the OPAQUE protocol, an Augmented (or Asymmetric) Password-Authenticated Key Exchange (aPAKE) protocol that supports mutual authentication in a client-server setting without reliance on PKI and with security against 1/3

www.rfc-editor.orgInformation on RFC 9807 » RFC Editor

RFC 9814: Use of the SLH-DSA Signature Algorithm in the Cryptographic Message Syntax (CMS), R. Housley, et al., rfc-editor.org/info/rfc9814 #RFC SLH-DSA is a stateless hash-based signature algorithm. This document specifies the conventions for using the SLH-DSA signature algorithm with the Cryptographic Message Syntax (CMS). In addition, the algorithm identifier and public key 1/2

www.rfc-editor.orgInformation on RFC 9814 » RFC Editor