Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension

Note: This ballot was opened for revision 05 and is now closed.

(Stephen Farrell) Yes

Barry Leiba (was Discuss) Yes

Comment (2015-05-16 for -05)
No email
send info
The last paragraph of Section 4 makes me wonder whether this should "update" 5246.  Basically, while this is an extension (which wouldn't normally use "updates"), it's one that you're proposing as standard behavior, and not really as an extension.

(Kathleen Moriarty) Yes

Comment (2015-05-08 for -05)
No email
send info
Thank you for your work on this and a well-written draft!  The considerations are very thorough, every time I had a question, I was able to find an answer in the draft.  I do think a couple more references could be helpful though.

1. I think it would be good for section 6.4 to note that SSL 3.0 has been deprecated in
It's ahead of this draft in the RFC editor queue.

2. It might be good to have a pointer to the UTA TLS Attack RFC7457 as this attack is described in section 2.11 and there is no reference to a fix.  It would be nice to show that known attacks are being resolved.

(Jari Arkko) No Objection

(Alia Atlas) No Objection

Comment (2015-05-11 for -05)
No email
send info
I agree with Barry's question.

Deborah Brungard No Objection

(Ben Campbell) No Objection

(Benoît Claise) No Objection

(Spencer Dawkins) No Objection

(Brian Haberman) No Objection

(Joel Jaeggli) No Objection

(Terry Manderson) No Objection

Alvaro Retana No Objection