On 7/20/17, 16:32, "ilariliusva...@welho.com on behalf of Ilari Liusvaara"
<ilariliusva...@welho.com> wrote:
> Maybe we are better off just retrofitting RSA-key-transport back
> into TLS-1.3?
This has in fact been requested. Kenny Paterson said about the request:
-----------------------------------------------------------------------
My view concerning your request: no.
Rationale: We're trying to build a more secure internet.My rationale to resurrect it: others are trying to push TLS-1.3 into an invisibly-insecure state. If we must satisfy them (and I’m not at all sure we should), then this is the most obvious way to at least avoid the “insecurity” being silently pushed upon you. At the very least you’d have an option to continue under surveillance or abort connection.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
