Script updating gh-pages from 9ba6950. [ci skip]

draft-ietf-uta-tls13-iot-profile.html

@@ -1343,7 +1343,7 @@ <h2 id="name-introduction">
 <span><a href="https://rfc-editor.org/rfc/rfc8446#section-4.6.2" class="relref">Section 4.6.2</a> of [<a href="#TLS13" class="cite xref">TLS13</a>]</span> only offers client-to-server authentication.
 The "Exported Authenticator" specification, see <span>[<a href="#RFC9261" class="cite xref">RFC9261</a>]</span>, recently added support for mutual,
 post-handshake authentication but
-requires payloads to be exchanged by the application layer protocol.<a href="#section-1-5.1.1" class="pilcrow">¶</a></p>
+requires the Certificate, CertificateVerify and the Finished messages to be exchanged by the application layer protocol, as it is exercised for HTTP/2 and HTTP/3 in <span>[<a href="#I-D.ietf-httpbis-secondary-server-certs" class="cite xref">I-D.ietf-httpbis-secondary-server-certs</a>]</span>.<a href="#section-1-5.1.1" class="pilcrow">¶</a></p>
 </li>
         <li class="compact" id="section-1-5.2">
           <p id="section-1-5.2.1">Rekeying of the application traffic secret does not lead to an update of the
@@ -2358,6 +2358,10 @@ <h3 id="name-informative-references">
         <dd>
 <span class="refAuthor">Huque, S.</span> and <span class="refAuthor">V. Dukhovni</span>, <span class="refTitle">"TLS Extension for DANE Client Identity"</span>, <span class="refContent">Work in Progress</span>, <span class="seriesInfo">Internet-Draft, draft-ietf-dance-tls-clientid-03</span>, <time datetime="2024-01-08" class="refDate">8 January 2024</time>, <span>&lt;<a href="https://datatracker.ietf.org/doc/html/draft-ietf-dance-tls-clientid-03">https://datatracker.ietf.org/doc/html/draft-ietf-dance-tls-clientid-03</a>&gt;</span>. </dd>
 <dd class="break"></dd>
+<dt id="I-D.ietf-httpbis-secondary-server-certs">[I-D.ietf-httpbis-secondary-server-certs]</dt>
+        <dd>
+<span class="refAuthor">Gorbaty, E.</span> and <span class="refAuthor">M. Bishop</span>, <span class="refTitle">"Secondary Certificate Authentication of HTTP Servers"</span>, <span class="refContent">Work in Progress</span>, <span class="seriesInfo">Internet-Draft, draft-ietf-httpbis-secondary-server-certs-00</span>, <time datetime="2024-04-11" class="refDate">11 April 2024</time>, <span>&lt;<a href="https://datatracker.ietf.org/doc/html/draft-ietf-httpbis-secondary-server-certs-00">https://datatracker.ietf.org/doc/html/draft-ietf-httpbis-secondary-server-certs-00</a>&gt;</span>. </dd>
+<dd class="break"></dd>
 <dt id="I-D.ietf-pquip-pqc-engineers">[I-D.ietf-pquip-pqc-engineers]</dt>
         <dd>
 <span class="refAuthor">Banerjee, A.</span>, <span class="refAuthor">Reddy.K, T.</span>, <span class="refAuthor">Schoinianakis, D.</span>, <span class="refAuthor">Hollebeek, T.</span>, and <span class="refAuthor">M. Ounsworth</span>, <span class="refTitle">"Post-Quantum Cryptography for Engineers"</span>, <span class="refContent">Work in Progress</span>, <span class="seriesInfo">Internet-Draft, draft-ietf-pquip-pqc-engineers-05</span>, <time datetime="2024-09-12" class="refDate">12 September 2024</time>, <span>&lt;<a href="https://datatracker.ietf.org/doc/html/draft-ietf-pquip-pqc-engineers-05">https://datatracker.ietf.org/doc/html/draft-ietf-pquip-pqc-engineers-05</a>&gt;</span>. </dd>

draft-ietf-uta-tls13-iot-profile.txt

@@ -171,8 +171,10 @@ Table of Contents
       Section 4.6.2 of [TLS13] only offers client-to-server
       authentication.  The "Exported Authenticator" specification, see
       [RFC9261], recently added support for mutual, post-handshake
-      authentication but requires payloads to be exchanged by the
-      application layer protocol.
+      authentication but requires the Certificate, CertificateVerify and
+      the Finished messages to be exchanged by the application layer
+      protocol, as it is exercised for HTTP/2 and HTTP/3 in
+      [I-D.ietf-httpbis-secondary-server-certs].
    *  Rekeying of the application traffic secret does not lead to an
       update of the exporter secret (see Section 7.5 of [TLS13]) since
       the derived export secret is based on the exporter_master_secret
@@ -1097,6 +1099,13 @@ Table of Contents
               <https://datatracker.ietf.org/doc/html/draft-ietf-dance-
               tls-clientid-03>.
 
+   [I-D.ietf-httpbis-secondary-server-certs]
+              Gorbaty, E. and M. Bishop, "Secondary Certificate
+              Authentication of HTTP Servers", Work in Progress,
+              Internet-Draft, draft-ietf-httpbis-secondary-server-certs-
+              00, 11 April 2024, <https://datatracker.ietf.org/doc/html/
+              draft-ietf-httpbis-secondary-server-certs-00>.
+
    [I-D.ietf-pquip-pqc-engineers]
               Banerjee, A., Reddy.K, T., Schoinianakis, D., Hollebeek,
               T., and M. Ounsworth, "Post-Quantum Cryptography for

index.html

@@ -29,7 +29,7 @@ <h2>Preview for branch <a href="hannestschofenig-patch-6">hannestschofenig-patch
       <tr>
         <td><a href="hannestschofenig-patch-6/draft-ietf-uta-tls13-iot-profile.html" class="html draft-ietf-uta-tls13-iot-profile" title="TLS/DTLS 1.3 Profiles for the Internet of Things (HTML)">TLS/DTLS 1.3 IoT Profiles</a></td>
         <td><a href="hannestschofenig-patch-6/draft-ietf-uta-tls13-iot-profile.txt" class="txt draft-ietf-uta-tls13-iot-profile" title="TLS/DTLS 1.3 Profiles for the Internet of Things (Text)">plain text</a></td>
-        <td><a href="https://author-tools.ietf.org/api/iddiff?url_1=https://thomas-fossati.github.io/draft-tls13-iot/draft-ietf-uta-tls13-iot-profile.txt&amp;url_2=https://thomas-fossati.github.io/draft-tls13-iot/hannestschofenig-patch-6/draft-ietf-uta-tls13-iot-profile.txt" class="diff draft-ietf-uta-tls13-iot-profile">diff with master</a></td>
+        <td>same as master</td>
       </tr>
     </table>
     <h2>Preview for branch <a href="ci-fix">ci-fix</a></h2>