On Thu, Dec 31, 2015 at 12:49 PM, Ilari Liusvaara <ilariliusva...@welho.com> wrote:
> On Thu, Dec 31, 2015 at 12:23:50PM -0800, Eric Rescorla wrote: > > On Thu, Dec 31, 2015 at 12:20 PM, Ilari Liusvaara < > ilariliusva...@welho.com> > > wrote: > > > > 2. Implementations which only do new algorithms can mandate EMS and not > > implement old derivation at all, provided we make that a rule here. > > Well, the EMS spec already says that endpoints SHOULD abort if > extension is not present if they don't want to interop with > legacy implementations. Correct. But as you say, that's a check that you can omit. However, if you only implement the EMS derivation than (unless I'm missing something) even if you omit the check this should just result in a handshake failure. -Ekr > > -Ilari >
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
