On Mon, Jan 29, 2018 at 10:22 AM, Benjamin Kaduk <bka...@akamai.com> wrote: > > The new note about "no ServerHello extension to echo back" makes me > wonder if (not) echoing back in Certificate should also be mentioned, > since the TLS 1.3 paradigm is that CertificateRequest extensions are > also "requests" that can get "responses" in the Certificate message. >
True, though I guess this depends on your definition of "response"? > I also wondered whether there was any sense in reserving codepoint 0 (of > CertificateCompressionAlgorithm) for "uncompressed". I guess not, since > support for uncompressed certificates is implicit by means of not using > the extension. But sometimes keeping value 0 (basically) reserved is > still useful. > I've considered that, but decided that this would just introduce two ways to do the same thing (send certificate uncompressed), so I decided against it.
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
