On 21 February 2016 at 11:33, Watson Ladd wrote:
> Currently we client authenticate after handshake and during handshake.
> Why not unify these by making all client authentication take place
> after the handshake? This will simplify the state machine.
I believe that we discussed this extensively
This was discussed at the TLS interim and the argument against was that
there was limited demand for the post-handshake mode and that people
wanted to have a mode they were very comfortable with as the "main"
thing. Of course, it may be time to revisit that decision.
-Ekr
On Sun, Feb 21, 2016 at
