On Saturday, December 05, 2015 08:58:58 pm Salz, Rich wrote: > Can we embed an EncryptedExtension inside an existing EE? That would let us > do TOR purely within TLS, right?
If clients are allowed to send any encrypted extensions other than the tunneling extension (that contains the tunneled hello), then we would have to allow sending an EncryptedExtension through it, otherwise tunneled peers would have less capabilities than non-tunneled. I don't see anything in this design that would prohibit recursively doing this as many times as desired. (e.g. tunnel of a tunnel of a tunnel of a...) That does sound somewhat TOR-like, though obviously, lots more would be needed to actually do anything with that. If this can actually be done, it sounds very promising. Dave _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
