Opened 7 years ago
Ability to specify different SSL certificate based on negotiated cipher suites and tls versions
|Reported by:||Ryan Hurst||Owned by:|
As TLS evolves, algorithms get deprecated and added the ability to selectively use certificates containing different types of keys based on which suite and TLS version are negotiated is useful.
Apache supports this, google also does this in their custom server so that they can intelligently use the best and most appropriate key material.