thanks for clearing this up. tls 1.3 failures are going to be pretty common, because in non-enterprise contexts without local certificate authorities, the risk imposed by ECH will be seen as too great. i guess we'll have to let the market sort it out.
-- P Vixie On Thursday, July 25, 2024 7:24:30 AM PDT Ben Schwartz wrote: > TLS 1.3 clients using ECH will not fall back to non-ECH upon unauthenticated > failure, just as TLS clients of any kind will not fall back to a lower > version upon unauthenticated failure. To control the TLS version, or the > usage of ECH, one must either control the client's behavior directly or be > able to authenticate as the TLS destination to the client's satisfaction. > In an enterprise context, the latter is often accomplished by implanting a > special local certificate authority into the client's trust store. _______________________________________________ DNSOP mailing list -- dnsop@ietf.org To unsubscribe send an email to dnsop-le...@ietf.org
