Just to confirm that I understand the scope of the discussion here: - TLS libraries have facilities to export keys from the library - Obviously, it's possible to ship these exported keys elsewhere (`tail -f $SSLKEYLOGFILE | nc $LOGBOX`)
So all we're really talking about is whether to define a way to do the shipment of the exported keys in-band to the TLS session. On Thu, Mar 15, 2018 at 3:05 PM, Salz, Rich <rs...@akamai.com> wrote: > This is what OpenSSL provides: > https://www.openssl.org/docs/manmaster/man3/SSL_CTX_get_ > keylog_callback.html > > > _______________________________________________ > TLS mailing list > TLS@ietf.org > https://www.ietf.org/mailman/listinfo/tls >
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
