Re: TLS ALPN Proposal v3

2015-07-24 Thread Jason Greene
> On Jul 9, 2015, at 12:02 PM, Bradford Wetmore oracle.com> wrote: > > Ok, I'll check with the HTTP/2 group tomorrow. It appears the proper > list is: Hi Brad, Your post to the H2 group got my attention, so I thought as a user of JSSE for an H2 implementation I should reply additionally he

Re: TLS ALPN Proposal v5

2015-09-28 Thread Jason Greene
> On Sep 25, 2015, at 3:22 PM, David M. Lloyd wrote: > > On 09/25/2015 02:11 PM, Simone Bordet wrote: >> Hi, >> >> On Fri, Sep 25, 2015 at 7:23 PM, David M. Lloyd >> wrote: >>> The application protocol implementation chooses only valid cipher suites for >>> the protocol. Why would it choose

Re: Issues with ALPN implementation in JDK 9

2016-06-14 Thread Jason Greene
> On Jun 14, 2016, at 10:58 AM, Simone Bordet wrote: > > Hi, > > On Tue, Jun 14, 2016 at 5:26 PM, Jason T. Greene > wrote: >> With H2 all impls are required to support >> TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 > > Unless it is discovered vulnerable. Sure, but in that case we have to rev the

Re: Issues with ALPN implementation in JDK 9

2016-06-14 Thread Jason Greene
> On Jun 14, 2016, at 2:52 PM, Simone Bordet wrote: > > Hi, > > On Tue, Jun 14, 2016 at 8:11 PM, Jason Greene wrote: >> If the case is that H3 blacks all RSA, then thats an easy test right? Just >> verify that keystore has an ECDSA key. > > I don't th

Re: Issues with ALPN implementation in JDK 9

2016-06-15 Thread Jason Greene
> On Jun 15, 2016, at 7:07 AM, David M. Lloyd wrote: > > On 06/14/2016 09:28 PM, Greg Wilkins wrote: >> >> >> On 15 June 2016 at 11:40, Jason T. Greene > > wrote: >> >> >>> On Jun 14, 2016, at 7:04 PM, Greg Wilkins > > wrote: >>

Re: Issues with ALPN implementation in JDK 9

2016-06-15 Thread Jason Greene
> On Jun 15, 2016, at 2:25 PM, Simone Bordet wrote: > > Hi, > > On Wed, Jun 15, 2016 at 8:12 PM, Jason Greene wrote: >> Here is an H2 example: >> >> The ClientHello expressing interest in both h2, and h1, and lists the >> ciphers: >