On 21 October 2016 at 06:52, Kazuho Oku <kazuho...@gmail.com> wrote: > Is there any need to expand resumption_psk from resumption_secret? > > To me, it is unclear why resumption_secret cannot be used directly as > a psk, since the two values have the same lengths and since the secret > is only used for deriving the psk. > > Maybe is this something we could also simplify?
draft-17 makes a simplification along the lines you suggested. Note that this wasn't as easy to get right as you might have imagined for a bunch of reasons. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls