Simplify certificate verification
The major use-case for the TLS protocol is verification of PKIX certificates. However, certificate verification support while is similar for almost all projects it requires around 100 lines of code (a callback) to be duplicated to all applications. It is desirable to get rid of the callback and simplify certificate verification support, by introducing a very simple API; one that would accept the session and the hostname only.
[0]. http://gnutls.org/manual/gnutls.html#Simple-client-example-with-X_002e509-certificate-support