On 21 February 2016 at 11:41, Cedric Fournet <four...@microsoft.com> wrote: > Agreed. For what it is worth, 0-RTT with PSK would still provide implicit > client authentication.
s/would/could That implies many of the hazards that we were talking about here, so none of this makes 0-RTT any less of a hazard. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
