Reviving this discussion, if I write up a draft for this what's going to happen to it? Will it get published, or shouted down? The reason I'm asking is that I've just spent the past three days debugging a TLS issue that's pretty much a poster child for why extended alerts are needed, it was something that would have been resolved in a single handshake exchange with extended alerts, but took three days to sort out without them. The sequence was as follows:
Client sends standard client hello. Server responds with handshake failed alert. The same client has been running for years, and connects fine to any number of servers, and openssl and some web browsers connect fine to the server. The only message exchanged was the hello, so there's zero security issues in providing extended alerts. Since some people have argued that extended alerts aren't necessary or useful, I'll wait awhile for them to diagnose what was wrong using the information above, which was all that was available. Peter. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
