A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Using TLS in Applications WG of the IETF.
Title : Recommendations for Secure Use of Transport Layer
Security (TLS) and Datagram Transport Layer Security (DTLS)
Here's the post-WGLC version of the BCP. Thanks to everybody who reviewed the
draft and those who participated in the discussion leading to this version.
Quite a few changes from -04:
- More clarity and guidance on session resumption.
- Clarity on TLS 1.2 renegotiation.
- Wo
I re-read the document. It's very nice. A few nits, I think all are editorial
and can be fixed later. I support moving this doc forward.
I note that you say "use encrypted client hello when it's ready" Do you want
to make the same recommendation for DTLS 1.3?
Do you want to say anything abo
