The draft currently lacks details on how server authentication is triggered after the TLS handshake. I noticed that you are utilizing CertificateRequest, but it is expected to be sent only by the server, not the client. Does this specification imply an update to TLS 1.3, allowing CertificateRequest to be sent by either the client or the server ?
The draft currently lacks details on how server authentication is triggered after the TLS handshake. I noticed that you are utilizing CertificateRequest, but it is expected to be sent only by the server, not the client. Does this specification imply an update to TLS 1.3, allowing CertificateRequest to be sent by either the client or the server ?