IETF Logo Mail Archive

Re: [TLS] draft-ietf-tls-session-hash-04 and session resumption

Martin Thomson <martin.thomson@gmail.com> Sat, 11 April 2015 01:42 UTC

Return-Path: <martin.thomson@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8F0081A006D for <tls@ietfa.amsl.com>; Fri, 10 Apr 2015 18:42:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NMopZ3HUo3V6 for <tls@ietfa.amsl.com>; Fri, 10 Apr 2015 18:42:52 -0700 (PDT)
Received: from mail-qk0-x232.google.com (mail-qk0-x232.google.com [IPv6:2607:f8b0:400d:c09::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5AA811A0037 for <tls@ietf.org>; Fri, 10 Apr 2015 18:42:52 -0700 (PDT)
Received: by qku63 with SMTP id 63so55499734qku.3 for <tls@ietf.org>; Fri, 10 Apr 2015 18:42:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=B1i6zMCZdvfz7D8VzGGT4I+FFbvPpnPMgu8bD0lJAdI=; b=YmV1LVCyBUU86HRfYN27PhRYw75W35q5ENLz/RWMrptPyl0LKwiaMM8c1Rrp/1f/K1 9T4D0vPm1uso5CqqPkYmlaVztRpN0/VEvGPnnBPrCkociObKfUXUxjI35FZp/2Vrk3fn g2+oeJ+iLCzyKoIrms1w3lypb8SpTT7gl3ltwo1rgNm2ujkxh0Hhr6AP1En5IDPujB8s pRxvi5gIONDVF6bQlVcvEll7P5tQxhMqseMp/fS8XNo26i17VVKdklGXf4+F/8zVimJa rvaYXgbsh3eF8VYjh2VMfnGPKFs1F/5lUhtS/ecIYTt7cdkB/jx8q2DtDPA6Xkq+GsWT 1DHQ==
MIME-Version: 1.0
X-Received: by 10.182.39.195 with SMTP id r3mr4940453obk.44.1428716571638; Fri, 10 Apr 2015 18:42:51 -0700 (PDT)
Received: by 10.202.48.151 with HTTP; Fri, 10 Apr 2015 18:42:51 -0700 (PDT)
In-Reply-To: <CAF8qwaCeXLXWumLimbtusOf9KbvNQCAQPwmvZ-vnkpfV+jso4w@mail.gmail.com>
References: <CAF8qwaCeXLXWumLimbtusOf9KbvNQCAQPwmvZ-vnkpfV+jso4w@mail.gmail.com>
Date: Fri, 10 Apr 2015 18:42:51 -0700
Message-ID: <CABkgnnXwOOg134QU_ci353fxK_QdAD7_rqip4JrekFaF4SoK+g@mail.gmail.com>
From: Martin Thomson <martin.thomson@gmail.com>
To: David Benjamin <davidben@chromium.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/5Gzj0QEnxwSmoLVw2z1x_0LMx6o>
Cc: Emilia Kasper <ekasper@google.com>, "tls@ietf.org" <tls@ietf.org>, Bill Cox <waywardgeek@google.com>
Subject: Re: [TLS] draft-ietf-tls-session-hash-04 and session resumption
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 11 Apr 2015 01:42:53 -0000

On 10 April 2015 at 16:25, David Benjamin <davidben@chromium.org> wrote:
>> If the original session did not use an extended master secret but the new
>> ClientHello does contain the "extended_master_secret" extension, the server
>> MUST reject the session and fall back to a full handshake.

WFM.

... MUST reject the session *resumption* and fall back ...

v2.23.0 | Report a Bug | By Email