What I’m afraid of is that a design will be shown to be safe, and then it turns out that the proof is wrong, or that the formalization of the notion of “safety” used by the proof is wrong.
Thanks for clarifying.
This kind of thing happens a lot in cryptography,
I agree.
Thanks for clarifying.
I agree.