I just uploaded draft-16.


The primary changes are listed below.

- New version negotiation format (*) [IMPORTANT: this got lost in the

- Change RSASSA-PSS and EdDSA SignatureScheme codepoints for better
backwards compatibility (*)

- Move HelloRetryRequest.selected_group to an extension (*)

- Clarify the behavior of no exporter context and make it the same
  as an empty context.(*)

- New KeyUpdate format that allows for requesting/not-requesting an
  answer (*)

- New certificate_required alert (*)

- Forbid CertificateRequest with 0-RTT and PSK.

- Relax requirement to check SNI for 0-RTT.

TLS mailing list

Reply via email to