Signed-off-by: Sergey Matveev <stargrave@stargrave.org>
* Perfect-forward secrecy (if long-term pre-shared keys are compromised,
no captured traffic can be decrypted anyway)
* Mutual two-side authentication (noone will send real network interface
data unless the other side is authenticated)
* Zero-knowledge authentication (pre-shared key is not transmitted in
any form between the peers, not even it's hash value)
* Perfect-forward secrecy (if long-term pre-shared keys are compromised,
no captured traffic can be decrypted anyway)
* Mutual two-side authentication (noone will send real network interface
data unless the other side is authenticated)
* Zero-knowledge authentication (pre-shared key is not transmitted in
any form between the peers, not even it's hash value)
+* Higher performance in some cases