Eric Rescorla <e...@rtfm.com> writes: >One more thing: we are finalizing RFC 8446-bis right now, so if there is WG >consensus to require that clients offer all MTI curves in the key_shares of >their initial CH, then that would be a straightforward text change.
That would fix things, something like saying a client has to provide at least one MTI cipher suite/signature/keyex in its client hello. There's only one MTI curve in 8446 so "all MTI curves" isn't a big deal. Peter. _______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
