Of course, this is precisely the point. All your proposal does is complicate the process of sharing sessions with a third-party: it doesn't stop an endpoint from surreptitiously doing evil.
Is the objective to have the protocol prevent an endpoint “surreptitiously doing evil”? Also, can you define what you mean by evil?
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
