[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [TLS] Extensions and session resumption

To: <mike-list@xxxxxxxxx>, <tls@xxxxxxxx>
Subject: Re: [TLS] Extensions and session resumption
From: <Pasi.Eronen@xxxxxxxxx>
Date: Mon, 5 May 2008 12:31:10 +0300
Delivered-to: tls@xxxxxxxxxxxxxx
In-reply-to: <481C40CF.6060708@xxxxxxxxx>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
References: <481C40CF.6060708@xxxxxxxxx>
Sender: tls-bounces@xxxxxxxx
Thread-index: AcitCj9n+MaRDiopTxCNlQC0m88EIABh3a4A
Thread-topic: [TLS] Extensions and session resumption

Mike wrote:
> 
> It's late, so I might be missing something, but I can't find any
> information about what clients and servers should put into hello
> extensions when they intend to resume a previous session.  It is
> implied that all that is necessary is for the session ID to match
> that of the previous session (and the client MUST include the
> particular cipher suite and compression algorithm), but nothing is
> said about whether the client needs to specify the same list of
> extensions (with the same values presumably), or if the server must
> include them in the server hello response.
> 
> My code wants at least the server name extension to be in the client
> hello in order for the server to easily find the cached session
> (since you can set up multiple session caches).  But it also makes
> some sense to require the inclusion of truncated HMAC, for example.

Since the client can't know whether the server will actually resume
the session, or start a full handshake, it needs to include all the
extensions in the Client Hello to achieve correct behavior.

For example, if the client omitted server_name (although it had
included it previously), the full handshake might fail because
the server might pick a different identity (certificate).

Best regards,
Pasi

_______________________________________________
TLS mailing list
TLS@xxxxxxxx
https://www.ietf.org/mailman/listinfo/tls

References:
- [TLS] Extensions and session resumption
  - From: Mike

Prev by Date: Genuine Jimi Hendrix in compromising position
Next by Date: Re: [TLS] =?utf-8?b?wqBFeHRlbnNpb25zwqBhbmTCoHNlc3Npb27CoHJlc3VtcHRp?==?utf-8?q?on?=
Previous by thread: Re: [TLS] =?utf-8?b?wqBFeHRlbnNpb25zwqBhbmTCoHNlc3Npb27CoHJlc3VtcHRp?==?utf-8?q?on?=
Next by thread: See who has dated Jenna Jameson
Index(es):
- Date
- Thread