On 13 October 2014 11:37, Joe Touch <[email protected]> wrote: > > That requires TCP-level indication that TLS is being used. That requires > indicating the use of the additional layer of TLS somewhere - in the > port number, in a TCP option, etc. - but NOT in the data stream because > AFAICT we can't tell the difference between TCP-level TLS and userland TLS.
That's not a huge problem. An indication would be beneficial, or perhaps more appropriately, a control knob to disable TCPINC. That would allow people to avoid having two layers of TLS, but at worst it's merely suboptimal to have two layers. I don't see there being any fundamental problem with having two layers of protection. _______________________________________________ Tcpinc mailing list [email protected] https://www.ietf.org/mailman/listinfo/tcpinc
