Hi- We're implementing TLSv1.3 support for PSK and note there is a capability in the PSK extension described in S 4.2.11 for sending a list of identities. We don't find support for a list of alternate identities implemented in user space TLS libraries such as GnuTLS or OpenSSL. Is there a known reason for that omission? Are there any planned changes in this area coming soon?
A quick browse of other sections of RFC 8446 does not show a similar capability for sending multiple certificates. We don't have a reason to need this yet, but would like our implementation to be prepared if such a capability were to be on the horizon. Did I misread the RFC? -- Chuck Lever _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
