[TLS] Re: 【Reply to the comments after the presentation in Montreal】RE: Re: FW: New Version Notification for draft-wang-tls-service-affinity-00.txt

Sat, 03 Jan 2026 11:51:55 -0800

I am trying to follow this thread. I am not sure in what sense both of you are using "TLS layer". It occurs 3x in RFC8446bis-14 but is never defined. It is also not defined in this draft. Does it refer to handshake and record protocols of TLS? Or does it refer to everything that is implemented as part of the TLS library? or something else? In general, what is "TLS layer" in QUIC for example? 

On 30.12.25 15:40, Eric Rescorla wrote:

I don't know what you mean by "The same session identifier".


I think it could refer to a key derived from Main Secret.


Yes. I said exactly this, but again, they're not always going to be
implemented correctly, and that's largely OK because most
connections don't fail.



You have presented this argument a couple of times but I don't think 
it's a good one. I believe nothing in this world is "/always/ going to 
be implemented correctly", including TLS itself which has 1000+ related 
CVEs currently.


-Usama




Attachment:
smime.p7s

Description: S/MIME Cryptographic Signature


_______________________________________________
TLS mailing list -- [email protected]
To unsubscribe send an email to [email protected]






















					Reply via email to