Skip to main content

TLS 1.3 Option for Negotiation of Visibility in the Datacenter

Document Type Expired Internet-Draft (individual)
Expired & archived
Authors Russ Housley , Ralph Droms
Last updated 2018-09-03 (Latest revision 2018-03-02)
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


Current drafts of TLS 1.3 do not include the use of the RSA handshake. While (EC) Diffie-Hellman is in nearly all ways an improvement over the TLS RSA handshake, the use of (EC)DH has impacts certain enterprise network operational requirements. The TLS Visibility Extension addresses one of the impacts of (EC)DH through an opt-in mechanism that allows a TLS client and server to explicitly grant access to the TLS session plaintext.


Russ Housley
Ralph Droms

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)