Hello! TLS 1.3 introduces post-handshake authentication. It relies on client/browser, client/browser must send post_handshake_auth extension to server before it can work. I hope I understood it correctly. But today we know only Firefox from popular browsers support this extension (and not by default).
Question: How can I implement certificate based client authentication against web server in TLS 1.3 only environment, if browsers do not support post_handshake_auth extension. I have open discussion with one big software company. Can you please share your opinion/recommendation here regarding to the issue? Thanks in advance, Urmas
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
