|
|
|
|
|
|
by FiloSottile
2364 days ago
|
|
|
I am fairly confident the SSH key reuse is fine, or I wouldn't have shipped it. But yes, it would be a misrepresentation to say there are formal proofs of it. There's no one I can think of that we can pay in short order to make robust ones. FWIW, we don't really have proofs for ECDSA either, and it's been almost 30 years. (Anyway, the core age flow with native keys is unaffected.) |
|
|