On Wed, Apr 28, 2021, at 20:27, Sara Dickinson wrote: > An early version of this specification proposed a XoT specific ALPN in > order to distinguish this from a connection intended to perform > recursive to authoritative DoT (often called ADoT). ADoT is not yet > specified, but is the subject of ongoing discussions in DPRIVE. The > working group rejected this idea for XoT and switched to the current > spec which does not use an ALPN at all.
No new protocol should use TLS without ALPN. It only opens space for cross-protocol attacks. Did the working group consider this possibility in their discussions? _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
