On Fri, Mar 24, 2017 at 8:14 PM, Jim Schaad wrote:
> EKR – I think that is the wrong answer because of the resume case.
>
Why? It seems like for Russ'a application, you would inject the static PSK
initially
and then it would be implicitly part of any resumption so no need to
reinject it
to obtai
From: Eric Rescorla [mailto:e...@rtfm.com]
Sent: Saturday, March 25, 2017 6:40 AM
To: Jim Schaad
Cc: Russ Housley ; IETF TLS
Subject: Re: [TLS] Using both External PSK and (EC)DH in TLS 1.3
On Fri, Mar 24, 2017 at 8:14 PM, Jim Schaad mailto:i...@augustcellars.com> > wrote:
EKR –
On Fri, Mar 24, 2017 at 12:16:48PM -0400, Russ Housley wrote:
>
> > I agree with David here. Specifically, I think.
> >
> > - The base specification should continue to forbid certificates in
> > combination with PSK
> > - We should at some point contemplate an extension that allows the use of
>
