On Tue, Jun 11, 2024 at 02:36:50AM +0100, Stephen Farrell wrote: > > Hiya, > > On 11/06/2024 02:24, Devon O'Brien wrote: > > > > I realize there has been extensive discussion about trust expressions > > Just checking - does your mail amount to "we heard your well-intentioned > but misplaced opposition, but we're not (yet) for changing"?
I think the main points were: - TLS 1.3 already defined an extension to perform trust anchor negotiation, but it is too size-inefficient to use in practical usecases. - The goal of Trust Expressions is to have trust anchor negotiation that supports practical usecases of trust anchor negotiation with practical message size. - If size was no limitation (including the hard 64kB limit), then the existing extension could do everything Trust Expressions does, and more. - There could be very different way of compressing down the the trust anchor information from TLS client to server than what is presently in the draft. (However, I don't think anyone has come up with anything that could be competitive with what's in the draft now.) -Ilari _______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
