John and Ilari:
> On Mar 8, 2026, at 6:12 PM, John Mattsson
> <[email protected]> wrote:
>
> Ilari Liusvaara wrote:
> >> - Normal MTLS 1.3 performs authentication in flights 2 and 3. This
> >> draft moves it earlier (flights 1 and 2). The draft should describe
> >> this change.
> >
> >Doesn't this expose client certificate in plaintext if using mTLS?
Yes, this was a choice. It could be adjusted.
The reason for making this choice was to avoid spending resources on the normai
TLS key management if the MLS option was going to be chosen.
Russ
_______________________________________________
TLS mailing list -- [email protected]
To unsubscribe send an email to [email protected]
