On 12/14/2020 1:38 AM, Mikkel Fahnøe Jørgensen wrote:
Would it be practical to lift the 32-bit constraint on the CID
sequence number?
Even if it probably is enough for most use cases I find it unfortunate
to introduce a new constraint here because if affects design decisions
elsewhere in stack.
For example, it could be required that a key is updated at least once
in every 2^31 sequence numbers, or the IV could be hashed and use a
sufficiently frequent key update.
It boils down to how much additional state you want to maintain in or to
support multipath. The 32 bit constraint allows for a very simple
implementation. I don't think applications are going to hit it in
practice. Supposing one connection migration per second, the limit is
not hit for one hundred years.
-- Christian Huitema
