On 10/10/14, 12:16 PM, Viktor Dukhovni wrote:
On Fri, Oct 10, 2014 at 08:12:30AM +0300, Yaron Sheffer wrote:
Unauthenticated TLS is clearly an important use case of TLS, in the world
outside of HTTPS. So I think we have to say *something* about it. What I
propose is a short section that:
- Defines what we are talking about, including references to relevant
drafts.
- Says that the BCP applies to these use cases.
When you say "the BCP applies" do you mean all of it, including
the requirements to authenticat the peer?
Clearly, text about authentication doesn't apply to unauthenticated TLS.
Or will it be specific
parts of the BCP that apply. I am a bit confused about the final
outcome.
Perhaps someone can publish an update that addresses this question,
and then it will be easier to see whether that settles the issue,
or anything remains to iron out.
The authors are working on that.
Peter
--
Peter Saint-Andre
https://andyet.com/
_______________________________________________
Uta mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/uta
