> On 17 Jul 2015, at 1:38 am, Schmidt, Jörn-Marc
> wrote:
>
>>> - Change the negotiation so that user name is not exchanged in the clear
>>> - Change key exchange to do PFS
>
>> TLS-pwd already supports both of these. It also supports ECC too,
>> which is problematic with the current SRP proto
I see this draft describes the format of a network address as
NetworkAddress.address carries the raw network-order byte-wise
representation of the client IP address.
...
Clients which receive a non-empty NetworkAddress extension may use
it to record their public IP address.
This
> On 21 May 2019, at 2:08 pm, Hugo Krawczyk wrote:
>
> A clarification on the text suggest below by Russ.
>
> The way I see it, the external PSK as used in
> draft-ietf-tls-tls13-cert-with-extern-psk is not intended as a means of
> authentication but as a way of regaining forward secrecy in
