TLS 1.3 Option for Negotiation of Visibility in the Datacenter

Document Type Expired Internet-Draft (individual)
Authors Russ Housley  , Ralph Droms 
Last updated 2018-09-03 (latest revision 2018-03-02)
Stream (None)
Expired & archived
plain text pdf htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


Current drafts of TLS 1.3 do not include the use of the RSA handshake. While (EC) Diffie-Hellman is in nearly all ways an improvement over the TLS RSA handshake, the use of (EC)DH has impacts certain enterprise network operational requirements. The TLS Visibility Extension addresses one of the impacts of (EC)DH through an opt-in mechanism that allows a TLS client and server to explicitly grant access to the TLS session plaintext.


Russ Housley (
Ralph Droms (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)