Internet-Draft draft-ietf-tls-tls13-pkcs1-01.txt is now available. It is a
work item of the Transport Layer Security (TLS) WG of the IETF.
Title: Legacy RSASSA-PKCS1-v1_5 codepoints for TLS 1.3
Authors: David Benjamin
Andrei Popov
Name:draft-ietf-tls-tls13-pkcs1-01.txt
Submitted new revision:
https://datatracker.ietf.org/doc/html/draft-ietf-tls-svcb-ech-02
Only change is adding the text to Security Considerations as discussed
above.
Erik
On Wed, Apr 10, 2024 at 9:14 AM Sean Turner wrote:
> Ted & ErikN,
>
> So it looks like ErikN submitted the following
Internet-Draft draft-ietf-tls-svcb-ech-02.txt is now available. It is a work
item of the Transport Layer Security (TLS) WG of the IETF.
Title: Bootstrapping TLS Encrypted ClientHello with DNS Service Bindings
Authors: Ben Schwartz
Mike Bishop
Erik Nygren
Name:
I am joining this thread a bit late but have been following the discussion.
I want to express my support for Trust Expressions and comment on a few
points that have been made.
First, the reality is that websites already have to support multiple
certificates to accommodate both ECC and RSA. This is
On Thu, May 23, 2024 at 12:42 PM David Benjamin wrote:
>
> Of course, whether this property (whether servers can usefully pre-deploy
> not-yet-added trust anchors), which trust expressions does not have, even
> matters boils to whether a root program would misinterpret availability in
> server
Hi! Let’s clam it down some in this thread. Just a gentle reminder to keep it
professional.
Thanks,
spt
___
TLS mailing list -- tls@ietf.org
To unsubscribe send an email to tls-le...@ietf.org
On Thu, May 23, 2024 at 11:09 AM Dennis Jackson wrote
>
> > I think we have to agree that Trust Expressions enables websites to
> adopt new CA chains regardless of client trust and even builds a
> centralized mechanism for doing so. It is a core feature of the design.
>
> No one has to agree to t
Hi David,
On 23/05/2024 14:07, David Adrian wrote:
There is certainly a discussion to be had about how well Trust
Expressions solves problems experienced by the HTTPS ecosystem and the
Web PKI today. However, that requires moving past repeated,
unsubstantiated claims about how Trust Expression
Hi Dennis,
There is certainly a discussion to be had about how well Trust Expressions
solves problems experienced by the HTTPS ecosystem and the Web PKI today.
However, that requires moving past repeated, unsubstantiated claims about
how Trust Expressions enables government surveillance, something
Hi Nick,
I think the issues around risk have a great deal of nuance that you're
not appreciating, but which I've tried to lay out below. I appreciate
that rational reasonable people can absolutely disagree on how they
weigh up these risks, but I think we have to agree that Trust
Expressions e
10 matches
Mail list logo
