[Standards] Re: XEP-0440 and tls-server-end-point

11 Jan 2024

* Simon Josefsson &lt;simon(a)josefsson.org&gt; [2024-01-11 13:10]:
...
 I believe tls-server-end-point is generally best left
unimplemented to
guide efforts towards supporting the stronger tls-exporter. 
One use case I see for tls-server-end-point is that it allows for 
supporting channel binding by setups where TLS is terminated by some 
reverse proxy, thereby protecting against _some_ but not all attack 
vectors that tls-exporter protects against.

Holger

2024

2023

[Standards] Re: XEP-0440 and tls-server-end-point