Viktor: > On Sun, Mar 09, 2025 at 09:44:06AM +0000, mohamed.boucadair@xxxxxxxxxx wrote: > >> == Here is the extract of specific comments from Valery: >> 7. Section 3.2.2: referencing RFC 7250 is a bit problematic, since >> it defines using RPKs for TLS 1.2 only (and thus contains TLS 1.2 >> specific information). RPKs is also supported in TLS 1.3, but >> referencing this support is not an easy task - there is no dedicated >> section in RFC 8446... I don't have any good proposals here, perhaps >> just add reference to 8446 in addition to 7250. > > TLS 1.3 RPKs are covered in > > https://datatracker.ietf.org/doc/html/rfc8446#section-4.4.2 Again, it is a choice between an X.509 certificate and a RPK. I do not not how to reconcile that with the MUST statement for mutual certificate-based authentication. Russ -- last-call mailing list -- last-call@xxxxxxxx To unsubscribe send an email to last-call-leave@xxxxxxxx
