On Wed, 7 Nov 2018, Tim Wicinski wrote:
My question would be "what will the HTTP community do if they find this whole process unwieldy and long"? Answer They will come up with a solution that does nothing with DANE.
They dont need to do anything to not have DANE. They already not have it.
is that an excuse to do something less than perfect for the better good, or do we live in the world of smug satisfaction of being perfect?
100% downgradable security is not security. It is not about being smug or perfect. Paul _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls