Re: [TLS] draft-sullivan-tls-exported-authenticator-00

2016-11-01 Thread William Whyte
That makes sense, but it'd be good to clarify the text. Thanks! William -- sent from my phone On Nov 1, 2016 11:57 AM, "Ilari Liusvaara" wrote: > On Tue, Nov 01, 2016 at 04:41:44AM -0400, William Whyte wrote: > > I'm confused by the line "These messages are not encrypted", because on a > > pla

Re: [TLS] draft-sullivan-tls-exported-authenticator-00

2016-11-01 Thread Ilari Liusvaara
On Tue, Nov 01, 2016 at 04:41:44AM -0400, William Whyte wrote: > I'm confused by the line "These messages are not encrypted", because on a > plain reading it could mean that the authenticator is sent outside the > encrypted TLS session. That would be bad because it would mean that clients > that wa

Re: [TLS] draft-sullivan-tls-exported-authenticator-00

2016-11-01 Thread Andrei Popov
Yes, this line has confused me as well. Cheers, Andrei From: TLS [mailto:tls-boun...@ietf.org] On Behalf Of William Whyte Sent: Tuesday, November 1, 2016 1:42 AM To: Nick Sullivan Cc: tls@ietf.org Subject: Re: [TLS] draft-sullivan-tls-exported-authenticator-00 I'm confused by the line &

Re: [TLS] draft-sullivan-tls-exported-authenticator-00

2016-11-01 Thread William Whyte
I'm confused by the line "These messages are not encrypted", because on a plain reading it could mean that the authenticator is sent outside the encrypted TLS session. That would be bad because it would mean that clients that wanted to authenticate themselves but to the server only wouldn't be able

Re: [TLS] draft-sullivan-tls-exported-authenticator-00

2016-10-31 Thread Nick Sullivan
On Mon, Oct 31, 2016 at 2:57 PM Ilari Liusvaara wrote: > On Mon, Oct 31, 2016 at 09:29:19PM +, Nick Sullivan wrote: > > > < > https://tools.ietf.org/html/draft-sullivan-tls-exported-authenticator-00> > > draft-sullivan-tls-exported-authenticator-00> > > < > htt

Re: [TLS] draft-sullivan-tls-exported-authenticator-00

2016-10-31 Thread Ilari Liusvaara
On Mon, Oct 31, 2016 at 09:29:19PM +, Nick Sullivan wrote: > > draft-sullivan-tls-exported-authenticator-00> > >

[TLS] draft-sullivan-tls-exported-authenticator-00

2016-10-31 Thread Nick Sullivan
draft-sullivan-tls-exported-authenticator-00> I just posted a new Internet-Draft called "Exported Authenticators in TL