All, I've collected a few changes that help clarify some ambiguities brought up on the list and during implementation of the draft. These changes are laid out as the following PRs in Github:
Restrict the Certificate type to standard X.509 certificates. https://github.com/grittygrease/tls-exported-authenticator/pull/20 Relax requirement for the certificate_request_context to be unique, clarify the benefits of doing so. https://github.com/grittygrease/tls-exported-authenticator/pull/18 Be more explicit about how signature schemes are chosen and supported. https://github.com/grittygrease/tls-exported-authenticator/pull/18 Modify handshake context to be asymmetrical with respect to client and server. https://github.com/grittygrease/tls-exported-authenticator/pull/15 <https://github.com/grittygrease/tls-exported-authenticator/pull/16> Let me know if there are any objections. If there are no comments I'll merge the changes and publish a new draft. Nick
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
