💾 Archived View for gemi.dev › gemini-mailing-list › 000862.gmi captured on 2024-08-19 at 02:21:28. Gemini links have been rewritten to link to archived content

View Raw

More Information

⬅️ Previous capture (2023-12-28)

-=-=-=-=-=-=-

[spec] The security model for TLS is also discussed inside IETF

1. Stephane Bortzmeyer (stephane (a) sources.org)

This post about TLS
<https://rip-van-webble.blogspot.com/2021/04/quic-elephant-in-room.html>
created a lively discussion inside IETF
<https://mailarchive.ietf.org/arch/msg/ietf/VBAyaRdpqE0UUkIjjSYCXYUer30/>
about the security of TLS: PKI (using CAs and may be CT), DANE, TOFU?
The same sort of issues that Gemini faces
<https://gitlab.com/gemini-specification/protocol/-/issues/5>.

Good to see we are not the only ones questioning the problem and its
solutions :-)

[For the context: the RFCs about the new Internet transport protocol,
QUIC, which will probably take a good market share from TCP, are done
and almost published.]

Link to individual message.

---

Previous Thread: [tech] can git email commit also be archived in mail list?

Next Thread: [spec] A possible client-side, community-based solution to the drawbacks of TOFU authentication