On Thu, Sep 01, 2016 at 09:01:27AM -0700, Eric Rescorla wrote: > > > > ALPN is also in EE. My general principle was that only things that were > required > to decrypt the handshake messages should be in SH. Arguably, btw, this means > that Server.signature_algorithms should be in EE, but I chickened out.
What the server.signature_algorithms is about BTW? To me, it looks like a footgun if used outside PSK mode (anonymous connections?) and not expressive enough (what are the semantics of authentication?) if used with PSK mode. -Ilari _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
