On 21 February 2016 at 11:33, Watson Ladd <watsonbl...@gmail.com> wrote: > Currently we client authenticate after handshake and during handshake. > Why not unify these by making all client authentication take place > after the handshake? This will simplify the state machine.
I believe that we discussed this extensively at the last interim. I believe that two views held: 1. post-handshake client auth is an abomination that only exists to support a few niche use cases. 2. doing it after the handshake creates a period of uncertainty for clients, who might receive the server Finished and start to transmit unauthenticated messages before receiving the request Excuse my colloquial description of the problems. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
