On Thu, Apr 23, 2020 at 4:31 PM Christopher Wood <c...@heapingbits.net> wrote:
> > Is this PR ready to go? If not, why not? What would you change, and why? > (Concrete suggestions are highly encouraged!) Note also that this is > currently only a recommended padding algorithm. Implementations are > therefore free to do what they wish. Is this acceptable? Do we need to be > more prescriptive? Food for thought! > It took me a while to notice that many of the padding debates aren't so important if ECHO allows arbitrary structs/extensions in the encrypted ClientHello. The recommendation is fine as a minimum, as long as servers are tolerant of unknown extensions in the ciphertext. thanks, Rob
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
