Only out of abundant caution, it seems. I mean, *Cloudflare* is using it.

Hamuko · on Jan 31, 2020

Cloudflare is also cautioning against using their own implementation in production.

ownagefool · on Jan 31, 2020

The author has specifically said it'll be considered released when it's in the kernel, which makes the parents point kinda mute.

panarky · on Jan 31, 2020

https://grammarist.com/usage/moot-mute/

ComputerGuru · on Jan 31, 2020

Cloudflare is not the golden standard for security.

vsareto · on Jan 31, 2020

Who is?

all_blue_chucks · on Jan 31, 2020

OpenBSD

tptacek · on Jan 31, 2020

I don't know a lot of serious systems security people who actually believe that. OpenBSD is fine, and smart people work on it, but it's been a long time since the early 2000's.

all_blue_chucks · on Feb 1, 2020

AFAIK it remains the single most selective platform out there. If a project is included in an OpenBSD release you know it has undergone serious whitebox scrutiny for security issues. I'm not aware of any platform that is quite so pedantic at the source code level.

tptacek · on Feb 2, 2020

I've said pretty much all I have to say about this, here:

https://news.ycombinator.com/item?id=7071219

aquabeagle · on Feb 1, 2020

And yet: https://news.ycombinator.com/item?id=22175431

coolsunglasses · on Feb 1, 2020

What's the history there?

PhilippGille · on Jan 31, 2020

The protocol yes, but don't they use their own implementation? https://github.com/cloudflare/boringtun

tw04 · on Jan 31, 2020

Sure, but the underlying codebase hasn't had a public audit for boringtun or wireguard, so they're both in the same boat.