On Wed, May 03, 2017 at 12:19:30PM -0700, Colm MacCárthaigh wrote: > With the improvements in 1.3 all of this FS only pertains to 0-RTT data, > not resumption in general. One solution would be to have two, or three > sub-types of ticket exchanges: > > Type 1 - same as now, except remove the ticket age, generally intended for > resumption. Can be used multiple times.
No, please don't remove the obfuscated ticket age. Either make it encrypted or leave it as-is. > Type 2.1 - Ticket intended for 0-RTT, does include the ticket age (maybe > not in the ticket itself, but somewhere in the handshake), can only be used > once. No. Give advice. Do not remove these features. > Type 2.2 - Same as 2.1, but required to be smaller than RPSK in size, to > prevent self-encryption. I don't grok this. Nico -- _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
