Stephane Bortzmeyer stephane at sources.org
Sun Apr 11 07:40:22 BST 2021
- - - - - - - - - - - - - - - - - - -
This post about TLS<https://rip-van-webble.blogspot.com/2021/04/quic-elephant-in-room.html>created a lively discussion inside IETF<https://mailarchive.ietf.org/arch/msg/ietf/VBAyaRdpqE0UUkIjjSYCXYUer30/>about the security of TLS: PKI (using CAs and may be CT), DANE, TOFU?The same sort of issues that Gemini faces<https://gitlab.com/gemini-specification/protocol/-/issues/5>.
Good to see we are not the only ones questioning the problem and itssolutions :-)
[For the context: the RFCs about the new Internet transport protocol,QUIC, which will probably take a good market share from TCP, are doneand almost published.]