In a two party mutual-authentication protocol, should I have
O(N^2) CPU + O(N^2) communication and if one side doesn’t trust the other neither learns anything or,
O(N^2) CPU + O(1) communication a...
Over my head, but thought I'd throw in my two sats anyway :) I'd go with the former since it seems more "mutual"
🤙1