Hi,
I'm trying to implement channel bindings defined RFC 5929.
I have three questions:
Q1) "tls-unique" is defined as "The first TLS Finished message sent
(note: the Finished struct, not the TLS record layer message
containing it)"
Is it excluding HandshakeType and the length of the Handshake
struct? (Four bytes are removed from the Finished handshake
message?)
Q2) Can "tls-server-end-point" apply to TLS 1.3?
Q3) If the answer to Q2 is yes, which part is hashed?
RFC 8446 defines Certificate as:
struct {
opaque certificate_request_context<0..2^8-1>;
CertificateEntry certificate_list<0..2^24-1>;
} Certificate;
hash(Certificate) or hash(Handshake:Certificate) or
hash(certificate_list)?
--Kazu
_______________________________________________
TLS mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/tls
