[qca] [Bug 476562] New: RFC 9266: Channel Bindings for TLS 1.3

Neustradamus Sat, 04 Nov 2023 17:42:28 -0700

https://bugs.kde.org/show_bug.cgi?id=476562


            Bug ID: 476562
           Summary: RFC 9266: Channel Bindings for TLS 1.3
    Classification: Frameworks and Libraries
           Product: qca
           Version: unspecified
          Platform: Other
                OS: Other
            Status: REPORTED
          Severity: critical
          Priority: NOR
         Component: general
          Assignee: unassigned-b...@kde.org
          Reporter: neustrada...@hotmail.com
                CC: aa...@kde.org, br...@frogmouth.net,
                    jus...@karneges.com
  Target Milestone: ---

Can you add the support of RFC 9266: Channel Bindings for TLS 1.3?
- https://datatracker.ietf.org/doc/html/rfc9266

Little details, to know easily:
- tls-unique for TLS =< 1.2
- tls-server-end-point
- tls-exporter for TLS = 1.3

I think that you have seen the jabber.ru MITM:
- https://notes.valdikss.org.ru/jabber.ru-mitm/
- https://snikket.org/blog/on-the-jabber-ru-mitm/
- https://www.devever.net/~hl/xmpp-incident
- https://blog.jmp.chat/b/certwatch

Thanks in advance.

Linked to:
- https://bugs.kde.org/show_bug.cgi?id=411184

-- 
You are receiving this mail because:
You are watching all bug changes.

[qca] [Bug 476562] New: RFC 9266: Channel Bindings for TLS 1.3

Reply via email to