On 21 October 2016 at 06:52, Kazuho Oku <[email protected]> wrote: > Is there any need to expand resumption_psk from resumption_secret? > > To me, it is unclear why resumption_secret cannot be used directly as > a psk, since the two values have the same lengths and since the secret > is only used for deriving the psk. > > Maybe is this something we could also simplify?
draft-17 makes a simplification along the lines you suggested. Note that this wasn't as easy to get right as you might have imagined for a bunch of reasons. _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
