[External] : Re: TLS 1.3 Post-handshake authentication
arjan tijms
arjan.tijms at gmail.com
Fri Mar 5 16:24:05 UTC 2021
Hi,
On Fri, Mar 5, 2021 at 5:21 PM Xue-Lei Fan <xuelei.fan at oracle.com> wrote:
> Thanks for the detailed information. I have a better sense of the
> scenarios now. What about HTTP/2? Will the business logic
> or scenarios get changed for HTTP/2? Could the change apply to HTTP/1.1 as
> well?
>
For HTTP/2 we'll have to specify something along the lines of the
client-cert authentication mechanism not working at all, or working in a
limited capacity (for the entire domain only).
Unfortunately that (potential) change can not be applied to HTTP/1.1.
Kind regards,
Arjan Tijms
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.org/pipermail/security-dev/attachments/20210305/f65e02c4/attachment.htm>
More information about the security-dev
mailing list