Ralph and Russ, This draft addresses the two main concerns I had with draft-green: 1) Client opt-in 2) On-the wire visibility
There are clearly some details missing from this draft (such as how Ke is used as a symmetric key), but generally I think this approach is more explicit and therefore less likely to unintentionally impact the broader internet if used in the datacenter setting. Nick On Mon, Oct 2, 2017 at 1:31 PM Ralph Droms <rdroms.i...@gmail.com> wrote: > We are about to publish draft-rhrd-tls-tls13-visibility-00. The TLS > extension defined in this I-D takes into account what we heard from the > discussion regarding TLS visibility and > draft-green-tls-static-dh-in-tls13-00 in Prague. Specifically, it provides > an opt-in capability for both the TLS client and server and makes it clear > on the wire that visibility will be enabled for the session. The new > mechanism does not depend on static handshake or session keys. > > - Ralph and Russ > > > _______________________________________________ > TLS mailing list > TLS@ietf.org > https://www.ietf.org/mailman/listinfo/tls >
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls