Re: http2 opportunistic security negotiation

On Thu, Feb 5, 2015 at 11:28 AM, Ilari Liusvaara <
ilari.liusvaara@elisanet.fi> wrote:

>
> Even TLS 1.3 won't encrypt the ALPN (at least as TLS 1.3 currently is).



Why can't the server's ALPN response be in EncryptedExtensions for a TLS
1.3 ServerHello
even if the client's ALPN (a superset so less interesting) is in-the-clear
in the ClientHello?

     Erik

Received on Thursday, 5 February 2015 22:21:54 UTC