On Mon, 19 Nov 2012, Paul Hoffman wrote:
Perhaps you're thinking of this expired draft: draft-hoffman-server-has-tls?
Exactly! Thanks. This I-D is not HTTPS-specific, which may explain why
I did not find it.
Y'all forget that think that security is valuable for things other than the
web. :-)
The draft has expired because there was little interest in it, and it causes
weird interactions with HSTS from the websec WG.
That will probably lead to people using the TLSA record as a pointer to
"do not connect without TLS". Which I believe people who wanted HASTLS
did not like?
(as HSTS does not protect you from attacks from sites you've never
visited before from a trusted network)
Paul
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop
