Re: explicitly authenticated proxy: new draft from Eric Rescorla on 2014-06-16 (ietf-http-wg@w3.org from April to June 2014)

From: Eric Rescorla <ekr@rtfm.com>
Date: Sun, 15 Jun 2014 17:01:38 -0700
To: Martin Nilsson <nilsson@opera.com>
Cc: Salvatore Loreto <salvatore.loreto@ericsson.com>, Mark Nottingham <mnot@mnot.net>, "<ietf-http-wg@w3.org>" <ietf-http-wg@w3.org>
Message-ID: <CABcZeBNoZpGrdN-3e=WaX7G3tUC55gR4nocsoKtwX0DOvJSoKA@mail.gmail.com>

On Sun, Jun 15, 2014 at 12:47 PM, Martin Nilsson <nilsson@opera.com> wrote:

> On Fri, 13 Jun 2014 20:12:30 +0200, Mark Nottingham <mnot@mnot.net> wrote:
>
>  Hi Sal,
>>
>> Thanks for the update, and sorry for the belated response.
>>
>> Easy things first - yes, the draft should be HTTP version-neutral.
>>
>> The parts that are specific to TLS and PKI need to be done in the TLS WG
>> (or other appropriate venues); we don’t specify new key usages in this WG
>> (Section 3.1), for example.
>>
>
> I agree that the direction this is taking is more suitable for TLS WG.

Note that the topic of explicitly authenticated proxies was raised in TLS a
while
back and there was not very much support.

That's not to say that opinion hasn't/won't change, but  it would require a
change.

-Ekr

Received on Monday, 16 June 2014 00:02:46 UTC