Needed some clarification on this.
With PFS (perfect forward secrecy) enabled, can the compromise of the private key result in an attacker decrypting the traffic for that one current session? If so, can someone please explain how?
I ask because the way I understand it, with PFS, private key is only used for signing and nothing else. So in that case, how can compromise of the private key result in decrypting the session?
I may be missing some basic information here, but I don't know what!