Last Call Review of draft-ietf-tls-tls13-cert-with-extern-psk-03
review-ietf-tls-tls13-cert-with-extern-psk-03-opsdir-lc-bradner-2019-11-29-00

Request Review of draft-ietf-tls-tls13-cert-with-extern-psk
Requested rev. no specific revision (document currently at 07)
Type Last Call Review
Team Ops Directorate (opsdir)
Deadline 2019-12-02
Requested 2019-11-18
Authors Russ Housley
Draft last updated 2019-11-29
Completed reviews Opsdir Last Call review of -03 by Scott Bradner (diff)
Genart Last Call review of -03 by Ines Robles (diff)
Assignment Reviewer Scott Bradner
State Completed
Review review-ietf-tls-tls13-cert-with-extern-psk-03-opsdir-lc-bradner-2019-11-29
Posted at https://mailarchive.ietf.org/arch/msg/ops-dir/LgCVwTZbG6S_3q0gzITC_w7k2GY
Reviewed rev. 03 (document currently at 07)
Review result Ready
Review completed: 2019-11-29

Review
review-ietf-tls-tls13-cert-with-extern-psk-03-opsdir-lc-bradner-2019-11-29

This is an OPS-DIR review of TLS 1.3 Extension for Certificate-based Authentication with an External Pre-Shared Key 
(draft-ietf-tls-tls13-cert-with-extern-psk)

This ID proposes a TLS 3.1 extension to better prepare for the post quantum computer crypto-armageddon world.

The document is very clearly written, as I expect from Russ.

I expect there will be some operational issues around hand holding users to get the correct setup to make use of the extension 
but since this extension basically enables the simultaneous use of existing TLS options any such issues should be confined 
to sites using exclusively one or the other option and I do not see any way to mitigate such situations.