On 7/18/06, Jeffrey Altman <[EMAIL PROTECTED]> wrote:
Eric Rescorla wrote:
> Jeffrey Altman <[EMAIL PROTECTED]> writes:
>
>> Eric Rescorla wrote:
>>> Nicolas Williams <[EMAIL PROTECTED]> writes:
>>>> Come to think of it, TLS too could use the same approach to make session
>>>> resumption stateless. That would be nice, very nice, if we can get it.
>>> Something like this?
>>>
>>> 4507 Transport Layer Security (TLS) Session Resumption without
>>> Server-Side State. J. Salowey, H. Zhou, P. Eronen, H. Tschofenig. May
>>> 2006.
>>>
>>>
>>> -Ekr
>> Do the the browser vendors know about this RFC?
>>
>> Do Apache and Microsoft have any intention of implementing it?
>
> Sorry, don't know the answer to either question.
>
> -Ekr
We need to do a better job of promoting our protocols.
I'd note that most of the work of supporting these things has to be
done in OpenSSL, and unlike Apache, OpenSSL does not have a large
funded development community.
Expecting volunteers to rush to implement every cute TLS feature is
asking a lot. The way to make this happen is to find money for OpenSSL
development.
Jeffrey Altman
_______________________________________________
dix mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/dix
_______________________________________________
dix mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/dix
