On Mon, Feb 15, 2016 at 4:33 PM, Robert Cragie <robert.cra...@gridmerge.com> wrote:
> The big assumption here is that SSL/TLS is used solely in browsers. > In literally every one of the non-browser SSL/TLS contexts I use today, I do not use passwords (preferring client certs instead). The main place I'd actually be interested in using a PAKE in a generalized transport context would be an IPSEC/IKE context (in addition to a client cert as a second factor). -- Tony Arcieri
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls