Skip to main content

Exported Authenticators in TLS

Document Type Replaced Internet-Draft (candidate for tls WG)
Expired & archived
Author Nick Sullivan
Last updated 2017-04-14 (Latest revision 2017-03-13)
Replaced by RFC 9261
RFC stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Additional resources Mailing list discussion
Stream WG state Call For Adoption By WG Issued
Document shepherd (None)
IESG IESG state Replaced by draft-ietf-tls-exported-authenticator
Consensus boilerplate Unknown
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document describes a mechanism in Transport Layer Security (TLS) to provide an exportable proof of ownership of a certificate that can be transmitted out of band and verified by the other party.


Nick Sullivan

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)