IMHO, Rich is 100% correct here. If it’s not deployable (and to me it means **universally** deployable, not merely within the US), if fails *all* of the security goals completely.
Regards, Uri > On Sep 11, 2020, at 09:27, Salz, Rich <[email protected]> > wrote: > > > I think we should be careful with the word "broken" ... here we're talking > about "don't stick out", which is a deployment consideration only. The main > security goal is confidentiality of the ClientHelloInner. > > Perhaps this is just being pedantic, but I disagree with the tone of this. We > want deployable confidentiality, and “don’t stick out” is something we > believe is a necessary requirement to be deployable. > > _______________________________________________ > TLS mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/tls
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
