Submission + - Fundamental architectural flaw in cryptographic trust
“Attested TLS: the handshake that can't prove who's on the other end”
“Muhammad Usama Sardar, a researcher at TU Dresden, has spent the past two years formally verifying whether that protocol, known as attested TLS, actually does what it claims. Using ProVerif, a tool for the symbolic security analysis of protocols, he and his co-authors discovered that it largely does not.”