Alan DeKok wrote: >The diagram suggests that it's possible for the EAP-TLS server to separate the >"TLS Finished" >messages from the "NewSessionTicket" message. There is no >guidance as to how this is done. >After spending some time going through RFC >8446 and OpenSSL docs / code, it's not clear that this >separation can be >enforced by the application.
John: It is impossible to not separate them when client authentication is used. The only time it is possible to send them together is when there is no client authentication. The message flows are just examples of how a TLS 1.3 message flow might look like. In Figure 8: EAP-TLS without peer authentication, the TLS implementation may send NewSessionTicket together with server Finished, as explained in RFC 8446. Future extension might also change things. I don't think the draft can or should explain all the corner cases of TLS 1.3. I made an issue on this on GitHub. Cheers, John _______________________________________________ Emu mailing list [email protected] https://www.ietf.org/mailman/listinfo/emu
