https://github.com/tlswg/tls13-spec/pull/962 Target merge date: Thursday
In reviewing the specification, I noticed that we seem to have banned the use of CertificateRequest with PSK both in the main handshake and in the post-handshake phase. I don't believe that this was intentional and it makes it very hard to use client auth with resumption. Accordingly I have filed the above PR to remove that restriction (while retaining it for the main handshake). As I understand it, several of the analyses we have already assumed this case and covered it, so no additional work is needed there. Comments/Objections welcome. -Ekr
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
