Description

Using short-lived static public keys signed by an Offline Signing Key for 0-RTT encryption, for improved security versus 0-RTT encryption to a long-lived static public key.

Status

Awaiting Additional Hashing, then should be fairly easy.

Documents

TBD

Dependencies

Additional Hashing

References (newest first)

https://moderncrypto.org/mail-archive/noise/2018/001758.html

https://moderncrypto.org/mail-archive/noise/2017/001215.html