> On Oct 11, 2015, at 09:46, Watson Ladd <watsonbl...@gmail.com> wrote: > > > I would suggest piggybacking on the PSK mode, using the key Kerberos > provides at both ends as the PSK key. This would address all of these > issues in TLS 1.3 >
Which would also match how Kerberos is used in IKE/IPsec Paul _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
