I've just posted the latest draft, as per Russ' comments and Hubert Kario's suggestion this removes any mention of the term "profile" from the text, it's now called an update. It also clarifies some issues that were encountered during testing, for example what happens during a rehandshake and how signalling of LTS vs. extended master secret and encrypt-then-MAC are handled.
There's also an open question as to what should happen when a suite with e.g. SHA-512 is negotiated. The LTS mandatory suites all use SHA-256, but it's possible to negotiate a suite with SHA-512 while still using LTS. Presumably this means the hash size will change to 64 bytes rather than 32. Finally, there's now a LTS test server available for interop testing, temporarily using the next free extension value 26 until a value is permanently assigned for LTS use, see the draft for details. Peter. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls