On Mon, 7 Mar 2022 at 17:45, Hannes Tschofenig <hannes.tschofe...@arm.com> wrote:
> Maybe it is a terminology issue but TLS at least requires > server-authentication. > Terminology issue, I think. By "only client certificate" I'm thinking of what a client needs to do to authenticate. The use of server-authentication with server certificate remains as it is. EAP-TTLS RFC discusses the possibility of client-authentication with certificate being sufficient for completing the whole authentication dialog without tunnelled (AKA phase2) authentication. As far as I know, this hasn't been used, not at least recently, and now when TLS 1.3 forces changes to implementations it would also provide a good chance to let go of features that are not needed any longer. Thanks, Heikki -- Heikki Vatiainen h...@radiatorsoftware.com
_______________________________________________ Emu mailing list Emu@ietf.org https://www.ietf.org/mailman/listinfo/emu
