> Compare with SSL (works out-of-the-box in 99.999% cases,
> and allows both, full and hard security with root certificates etc,
> simple security based on _ok, I trust you first time, then we can
If I'm on the same shared medium as you I can kill your SSL session
with one packet.
Only if shared medium = vanilla CSMA/CD Ethernet or the like.
Just because 'transport' is shared, doesn't mean you as the consumer of
information carried by the network have visibility.