On 17/12/2018 23:33, Nico Williams wrote: > > Maybe we do both, the current ESNI proposal and this as an alternative > for when ESNI keyshare orchestration is difficult, and in that case you > don't get to do split mode.
Interesting that the above overlaps a bit with the PR davidben just posted. That seems promising. That said, I'd bet we're all generally unkeen on "do both" but maybe the above-mentioned PR avoids that by casting the HRR-mode as way to better handle a likely operational failure mode. S.
0x5AB2FAF17B172BEA.asc
Description: application/pgp-keys
signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
