On Wed, Nov 20, 2019 at 10:35:09PM -0800, Rob Sayre wrote: > On Wed, Nov 20, 2019 at 10:25 PM David Schinazi <dschinazi.i...@gmail.com> > wrote: > > > The SHOULD from (2) is indeed not required for interoperability, but > > important > > to ensure servers put this protection in place. > > > > In that case, this issue belongs in the Security Considerations section. I > understand that the concern is valid, but a "SHOULD" in this part of the > document is not the right way to communicate it.
Is it more of a security consideration or an operational one? -Ben _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
