[ resurrecting ancient thread ]
Andrei said on November 4, 2015..
> So perhaps the simplest fix is to update RFC 5929 to say that tls-unique
> is deprecated and EKM should be used instead, with certain recommended
> parameters. This does mean that any protocols that rely on tls-unique
> will need
On 4/25/16, 8:27 AM, "Russ Housley" wrote:
>
>On Apr 25, 2016, at 11:19 AM, Paul Wouters wrote:
>
>> On Mon, 25 Apr 2016, Sean Turner wrote:
>>
>>> draft-shore-tls-dnssec-chain-extension was originally discussed at
>>>IETF 93 [0], and the authors have been biding their time while the WG
>>>thras
