Re: FYI: proposal for client authentication in TLS

On 8 March 2014 11:39, Martin Thomson <martin.thomson@gmail.com> wrote:
> Pursuant to our discussion on TLS renegotiation, I've submitted part 1
> of the solution I proposed as an internet draft.
>
> http://datatracker.ietf.org/doc/draft-thomson-tls-care/
>
> If we agree to a mechanism whereby we augment the 401 status code with
> a "go away and make a new TLS connection with client authentication",
> then this is necessary, so that the server knows to request a client
> certificate.

Now with part 2:

http://datatracker.ietf.org/doc/draft-thomson-httpbis-catch/

Received on Sunday, 9 March 2014 07:37:47 UTC