I agree with almost everything that Brian Rosen says in his note - the
only thing that made me wonder, after Steve Bellovin talked at the IAB
plenary about a crypto protocol that got blown twice in a
specification that had only three message (message-equivalents? sorry
if I misunderstood), that the definition of "complexity is low" may be
a lot harder than we would have thought intuitively!
Spencer
Clearly, there are specifications where the complexity is low, and
we have
enough experience with the subject that we can be reasonably sure it
works
without running code.
_______________________________________________
Ietf@xxxxxxxx
https://www1.ietf.org/mailman/listinfo/ietf