%% You should probably cite draft-bishop-httpbis-http2-additional-certs instead of this I-D.
@techreport{thomson-http2-client-certs-00,
    number =    {draft-thomson-http2-client-certs-00},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-thomson-http2-client-certs/00/},
    author =    {Martin Thomson and Mike Bishop},
    title =     {{Reactive Certificate-Based Client Authentication in HTTP/2}},
    pagetotal = 11,
    year =      2015,
    month =     oct,
    day =       19,
    abstract =  {Some HTTP servers provide a subset of resources that require additional authentication to interact with. HTTP/1.1 servers rely on TLS renegotiation that is triggered by a request to a protected resource. HTTP/2 made this pattern impossible by forbidding the use of TLS renegotiation. This document describes a how client authentication might be requested by a server as a result of receiving a request to a protected resource. This document updates RFC 7540 to allow TLS renegotiation in limited circumstances.},
}