> This seems like a big deal, no? That is, since SNI is one of the few things not protected in the TLS handshake, it does seem spoofable. If there's not something I'm missing, it seems like the proposal should just drop DVSNI altogether.
An attacker who fully controls the network is explicitly not part of the threat model for any Domain Validation. None of the available techniques for DV, whether they involve fetching a file, sending an email, or doing a TLS handshake can fully mitigate a network attacker. _______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
