On Tue, Oct 21, 2014 at 07:56:35PM -0600, Peter Saint-Andre - &yet wrote:
> The initial UTA BCP was supposed to be a quick win for authenticated
> encryption with TLS. All this discussion of OE/UE is distracting us from
> that goal.
It was only mentioned because the document asserted SMTP and XMPP
in scope, without leaving wiggle-room to opt-out the server to
server cases.
It is sufficient for the document to explicitly disclaim applicability
to opportunistic TLS, possibly mentioning SMTP and XMPP (server to
server) as the canonical examples.
Before we consider a new BCP for opportunistic TLS, I'd like to
see the base opportunistic security informational draft become a
published RFC, and ideally also the SMTP with DANE draft.
--
Viktor.
_______________________________________________
Uta mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/uta
