> -----Original Message----- > From: TLS [mailto:tls-boun...@ietf.org] On Behalf Of Salz, Rich > Sent: Wednesday, September 16, 2015 7:24 AM > To: Florian Weimer <fwei...@redhat.com>; Henrik Grubbström > <gru...@gmail.com> > Cc: tls@ietf.org > Subject: Re: [TLS] Should we require implementations to send alerts? > > > > With full-duplex connections, it does not make a difference. TCP will > > still detect a data loss event, send the RST segment, and discard the > > queued fatal alert. > > Yes, it might be hard(er) to do the right thing. We should not penalize everyone > because of that.
There are cases where TLS is not traveling over TCP connections. In this case having the alert be transmitted is a better way of signaling either that a session has ended or the other channel needs to be closed. Jim > _______________________________________________ > TLS mailing list > TLS@ietf.org > https://www.ietf.org/mailman/listinfo/tls _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls