On 04/03/2016 08:42, "TLS on behalf of Martin Thomson" <tls-boun...@ietf.org on behalf of martin.thom...@gmail.com> wrote:
>On 4 March 2016 at 18:10, Fossati, Thomas (Nokia - GB) ><thomas.foss...@nokia.com> wrote: >> In CoRE we might need to allocate a new SNI NameType for non-DNS host >> names [1]. >> >> Removing SNI extensibility would make it unfeasible. > >Not at all. It would, the way it is formulated at the moment. But that doesn't matter, we can change it to whatever as long as we can make it work. >Define a new extension. We have evidence that that works. That can be done, of course. Although it strikes me as odd to add another extension given the exact same facility is already in place. There are various ways SNI can be tightened other than removing the parametrisation on NameType, e.g. limiting the number of ServerName entries to 1. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
