On Wed, Oct 9, 2019 at 1:19 AM Salz, Rich <[email protected]> wrote: > > - One issue not covered in this document is SNI encryption from CDNs > to Origin servers. > > > > I think deliberately so. User-agent to origin (where sometimes the origin > is a CDN or other intermediary) is the main case. >
Well, TLS is a transport layer protocol. I think my suggestion might apply to any client that's sending a certificate. A link from CDN to Origin is just a particularly easy-to-deploy use case, since client certificates are already in wide use and IPv6 tends to work flawlessly. thanks, Rob
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
