Eric:
> On Mon, Nov 28, 2016 at 11:53 AM, Russ Housley <hous...@vigilsec.com> wrote:
> Only the client ever sends the "psk_key_exchange_modes” extension. In fact,
> the server MUST NOT send a "psk_key_exchange_modes" extension.
>
> The "pre_shared_key” extension is already divided into the structures used by
> the client and the server. Why not add the ke_modes to the client part of
> the "pre_shared_key” extension?
>
> This version allows you to tell the server that you would support a specific
> set of modes (so it knows whether to send you a ticket or not) without the
> need to allow an empty PSK list (with the small side effect that you can
> check the minimum 1 requirement at the syntax level.
I see. Thanks.
Russ
_______________________________________________
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls
