> Great news. Then all that is needed is a post connection exchange > comparison in the client between the server certificate used by TLS > and the one obtained from DANE.
yes, that is what dane clients do > Yes, with DANE in place, this proposal is now entirely focused on > authentication by the server of clients. though occasionally useful, it is not necessarily a good idea in the privacy context randy _______________________________________________ perpass mailing list [email protected] https://www.ietf.org/mailman/listinfo/perpass
