Based on John's email [1] and a few other discussions I've had offline I'm proposing the following series of consensus calls to find a path forward:
1. Consensus on requiring result indicators using a 4.5 roundtrip protocol. I think this is a conservative approach that could move forward quicker then alternatives. It may be possible to securely use an abbreviated protocol in some environments or with some additions to TLS, but the security analysis for this would take more time and may lead nowhere. An abbreviated protocol could be covered in an update. 2. Consensus on what signal to use for result indicators, such as Close_Notify and fatal alerts. 3. Consensus on whether to enhance the key derivation to include certificates or other information from that includes the client and server identity. This would help ensure that keys were not passed down to the lower layer prematurely. I think we can run 1 and 3 in parallel. We will also need to take resumption into account. Please respond to this thread, either privately or on the list, with your concerns. I'd like to start these calls before next week. Cheers, Joe [1] https://mailarchive.ietf.org/arch/msg/emu/hawPjEH2RRin4MlzqJe57Yrf0bQ/
_______________________________________________ Emu mailing list Emu@ietf.org https://www.ietf.org/mailman/listinfo/emu
