W3C home > Mailing lists > Public > ietf-http-wg@w3.org > January to March 2014

Re: FYI: proposal for client authentication in TLS

From: Martin Thomson <martin.thomson@gmail.com>
Date: Sun, 9 Mar 2014 07:37:20 +0000
Message-ID: <CABkgnnWDu301rXkX2u-AhptkSEr9AJb3LGJ3wfvVbhD0Oy4H6g@mail.gmail.com>
To: HTTP Working Group <ietf-http-wg@w3.org>
On 8 March 2014 11:39, Martin Thomson <martin.thomson@gmail.com> wrote:
> Pursuant to our discussion on TLS renegotiation, I've submitted part 1
> of the solution I proposed as an internet draft.
>
> http://datatracker.ietf.org/doc/draft-thomson-tls-care/
>
> If we agree to a mechanism whereby we augment the 401 status code with
> a "go away and make a new TLS connection with client authentication",
> then this is necessary, so that the server knows to request a client
> certificate.

Now with part 2:

http://datatracker.ietf.org/doc/draft-thomson-httpbis-catch/
Received on Sunday, 9 March 2014 07:37:47 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 17:14:24 UTC