5 Jul 2011 15:32
Fwd: [TLS] New Version Notification for draft-wouters-tls-oob-pubkey-00.txt (fwd)
Daniel Kahn Gillmor <dkg <at> fifthhorseman.net>
2011-07-05 13:32:44 GMT
2011-07-05 13:32:44 GMT
Here's an interesting proposed TLS draft extension that might be useful for the monkeysphere: https://tools.ietf.org/html/draft-wouters-tls-oob-pubkey-00 The idea appears to be that the client can suppress the sending of the server's pubkey entirely if it already knows what key to expect. they're interested in it for DANE, but it would also suit our purposes, i think. --dkg
Subject: [TLS] New Version Notification for draft-wouters-tls-oob-pubkey-00.txt (fwd)
Date: 2011-07-04 21:43:48 GMT
I just submitted draft-wouters-tls-oob-pubkey-00.txt which documents a TLS extension for use when a TLS client has obtained a server's public key (or keys) out-of-band. It allows the suppression of sending PKIX certificates This is useful for example when obtaining the TLS server public key using DANE.(Continue reading)
RSS Feed