On Sat, Dec 2, 2017 at 10:10 AM, Russ Housley wrote:
> At the bottom of page 136, the current draft says:
>
>Note: TLS does not currently permit the server to send a
>certificate_request message in non-certificate-based handshakes
>(e.g., PSK). If this restriction were to be relaxed
At the bottom of page 136, the current draft says:
Note: TLS does not currently permit the server to send a
certificate_request message in non-certificate-based handshakes
(e.g., PSK). If this restriction were to be relaxed in future, the
client's signature would not cover the server'
➢ I really don't understand why there is such intransparency over this
issue. Why can't we at least make clear who are the companies
responsible for this nonsense?
Adam Langley posted something to this list awhile back, but I can’t find it,
sorry.
On Fri, 01 Dec 2017 09:47:45 -0500
R du Toit wrote:
> The middlebox in question supports TLS 1.3, but only drafts 18
> through 21. The FF Nightly ClientHello supported_versions extension
> advertises support for TLS 1.2 and TLS 1.3 (draft 22),
Sorry, can you please name names here? In what univ
