I’m quite happy that the MitM options didn’t make it into the standard.
Though I’m missing encrypted SNI, I hope we get that soon.
It was interesting to see the reason why encrypted SNI wasn’t included - too much complexity to achieve it.
Regarding encrypted SNI, this Internet-Draft, last updated March 1, summarizes the proposals that appear to be furthest along.
Does this mean the spec is finished and we can start seeing it used in applications/servers?
If I understand the IETF, it means assuming nothing is found to be totally broken, there’ll only be editorial changes from here on out, no technical changes.
I’m quite happy that the MitM options didn’t make it into the standard.
Though I’m missing encrypted SNI, I hope we get that soon.
It was interesting to see the reason why encrypted SNI wasn’t included - too much complexity to achieve it.
Regarding encrypted SNI, this Internet-Draft, last updated March 1, summarizes the proposals that appear to be furthest along.
Does this mean the spec is finished and we can start seeing it used in applications/servers?
If I understand the IETF, it means assuming nothing is found to be totally broken, there’ll only be editorial changes from here on out, no technical changes.