On Mon, Mar 17, 2025 at 10:02 AM Rob Sayre <say...@gmail.com> wrote:
> On Mon, Mar 17, 2025 at 9:38 AM Eric Rescorla <e...@rtfm.com> wrote: > >> >> As above, I don't see what this has to do with PAKEs at all. If you have >> a third >> party authentication system, whether sign in with Apple, Google, or some >> SSO >> provider, then you don't need to share any secret with the relying party. >> > > In my mind, the idea is that you don't have to rely solely on WebPKI if > you have that information handy after registration. > The other PAKE draft on the agenda explains this motivation better in its introduction, although the mechanism is different: https://www.ietf.org/archive/id/draft-guo-pake-pha-tls-01.html#name-introduction In draft-bmw-tls-pake13-01, the words "such as" are doing a lot of work in the abstract and introduction. I doubt they are aiming at passwords that a user types, given all of their other efforts to ditch passwords, but idk. thanks, Rob
_______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
