Skip to content

FCS_TLSC_EXT.1.4 extended_master_secret likely not conformant to most servers #34

@woodbe

Description

@woodbe

Support for this is available on clients but it has been up to the server to request it, which the client can then do. Forcing the client to require this likely will mean that the client is non-viable for general use today as it isn't clear just how many servers do actually have this support. This again would seem to point to requiring a special mode of operation on client libraries to be compliant here for something that should be handled by the server.

Requiring the client to support this when a server asks is fine, but forcing the client to only talk to servers that have this is a problem.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions