On 08/07/17 18:05, Russ Housley wrote: > In draft-green-tls-static-dh-in-tls13, there is not one. I have not > thought about it in these terms. The server, if acting in bad faith, > can always release the client's traffic. Is it bad faith if the server is compelled to enable this wiretap interface? For a wiretapper this is a great scheme, as they only need to force it to be turned on and accept a tiny bit of data and then they can pick up those packets from anywhere without having to deal with problems at the web server end. So no need to even re-imburse the web server for the intercepted access anymore.
Honestly, doesn't that clearly mean a conflict with 2804? And one that cannot afaics be avoided. S.
signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
