%rCQcrcCim1CxiidoIPH8TzdP6p1hnRTwr1oIu7LTPPU=.sha256I'm also confused by this. The paper mentions that the authenticated key exchanges requires a "2-RTT synchronous protocol" but I'm unclear where they concluded that we only need 1 round trip.
%rCQcrcCim1CxiidoIPH8TzdP6p1hnRTwr1oIu7LTPPU=.sha256I'm also confused by this. The paper mentions that the authenticated key exchanges requires a "2-RTT synchronous protocol" but I'm unclear where they concluded that we only need 1 round trip.