IETF Logo Mail Archive

Re: [TLS] Re: when is it ok to resume a cached SSL/TLS session

<home_pw@msn.com> Mon, 15 January 2007 19:48 UTC

Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1H6Xog-0001m8-Tl; Mon, 15 Jan 2007 14:48:26 -0500
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1H6Xof-0001lz-7e for tls@ietf.org; Mon, 15 Jan 2007 14:48:25 -0500
Received: from bay0-omc1-s17.bay0.hotmail.com ([65.54.246.89]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1H6Xod-0008IU-Uu for tls@ietf.org; Mon, 15 Jan 2007 14:48:25 -0500
Received: from hotmail.com ([65.55.131.25]) by bay0-omc1-s17.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2668); Mon, 15 Jan 2007 11:48:23 -0800
Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Mon, 15 Jan 2007 11:48:23 -0800
Message-ID: <BAY126-DAV1575E030C51BF27E3D904592B50@phx.gbl>
Received: from 70.142.20.165 by BAY126-DAV15.phx.gbl with DAV; Mon, 15 Jan 2007 19:48:20 +0000
X-Originating-IP: [70.142.20.165]
X-Originating-Email: [home_pw@msn.com]
X-Sender: home_pw@msn.com
From: home_pw@msn.com
To: martin.rex@sap.com
References: <200701151923.UAA02162@uw1048.wdf.sap.corp>
Subject: Re: [TLS] Re: when is it ok to resume a cached SSL/TLS session
Date: Mon, 15 Jan 2007 11:48:18 -0800
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"; charset="iso-8859-1"; reply-type="original"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Windows Live Mail desktop 8.0.1223
X-MimeOLE: Produced By Microsoft MimeOLE V8.0.1223
X-OriginalArrivalTime: 15 Jan 2007 19:48:23.0067 (UTC) FILETIME=[1D6916B0:01C738DE]
X-Spam-Score: 0.2 (/)
X-Scan-Signature: b19722fc8d3865b147c75ae2495625f2
Cc: tls@ietf.org
X-BeenThere: tls@lists.ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/tls>
List-Post: <mailto:tls@lists.ietf.org>
List-Help: <mailto:tls-request@lists.ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
Errors-To: tls-bounces@lists.ietf.org


----- Original Message -----
From: "Martin Rex" <martin.rex@sap.com>
To: <home_pw@msn.com>
Cc: <martin.rex@sap.com>; <ekr@networkresonance.com>; 
<tls@ietf.org>
Sent: Monday, January 15, 2007 11:23 AM
Subject: Re: [TLS] Re: when is it ok to resume a cached 
SSL/TLS session


> I think it is clear from the protocol handshake and the 
> state machine
> that there is a significant difference between a server 
> not resuming
> a cached session and an established session doing a 
> renegotiation.
> For the denied resume, there is no agreement on a common 
> previous
> session state, while for a renegitiation request, there 
> exists
> common agreed-upon session state.


Make your recommendation on the text change I proposed, for 
TLS 1.2. You have two choices really, given your (combined) 
arguments: SHOULD or MUST.

If this is important enough, one of those two changes can be 
incorporated. It's a one word change.
 


_______________________________________________
TLS mailing list
TLS@lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

v2.23.0 | Report a Bug | By Email