Re: [TLS] Application state binding with TLS session state
Eric Rescorla <ekr@networkresonance.com> Fri, 07 September 2007 19:49 UTC
Return-path: <tls-bounces@lists.ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1ITjq0-0002Xa-Ju; Fri, 07 Sep 2007 15:49:56 -0400
Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1ITjpz-0002Wc-Q2 for tls@ietf.org; Fri, 07 Sep 2007 15:49:55 -0400
Received: from [209.213.211.195] (helo=delta.rtfm.com) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1ITjpz-0006ac-DO for tls@ietf.org; Fri, 07 Sep 2007 15:49:55 -0400
Received: from delta.rtfm.com (localhost.rtfm.com [127.0.0.1]) by delta.rtfm.com (Postfix) with ESMTP id D9B6C33C21; Fri, 7 Sep 2007 12:46:34 -0700 (PDT)
Date: Fri, 07 Sep 2007 12:46:34 -0700
From: Eric Rescorla <ekr@networkresonance.com>
To: Pasi.Eronen@nokia.com
Subject: Re: [TLS] Application state binding with TLS session state
In-Reply-To: <B356D8F434D20B40A8CEDAEC305A1F24048B0E06@esebe105.NOE.Nokia.com>
References: <46531FFA79FDBFFC04403B38@[10.0.1.3]> <B356D8F434D20B40A8CEDAEC305A1F24048B0E06@esebe105.NOE.Nokia.com>
User-Agent: Wanderlust/2.14.0 (Africa) Emacs/21.3 Mule/5.0 (SAKAKI)
MIME-Version: 1.0 (generated by SEMI 1.14.6 - "Maruoka")
Content-Type: text/plain; charset="US-ASCII"
Message-Id: <20070907194634.D9B6C33C21@delta.rtfm.com>
X-Spam-Score: 0.1 (/)
X-Scan-Signature: bb8f917bb6b8da28fc948aeffb74aa17
Cc: Chris.Newman@Sun.COM, tls@ietf.org
X-BeenThere: tls@lists.ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/tls>
List-Post: <mailto:tls@lists.ietf.org>
List-Help: <mailto:tls-request@lists.ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
Errors-To: tls-bounces@lists.ietf.org
At Fri, 7 Sep 2007 12:36:24 +0300, <Pasi.Eronen@nokia.com> wrote: > > Binding of application state to TLS session applies not only > to 4507bis, but ordinary TLS session resumption as well. > > Current TLS implementations usually have some kind of APIs that > allow applications to store application-specific data in the TLS > session cache entry (e.g., SSL_SESSION_set_ex_data() in OpenSSL > and SSLSession.putValue() in Java JSSE), but this is not really > mentioned anywhere in the TLS RFCs. > > As long as this is purely a local implementation detail, maybe > it even doesn't need to be mentioned in protocol standards... > But if some application protocols would start assuming that > this feature exists (in a way that has to be implemented in TLS > layer, and can't be implemented by the application calling TLS), > then things become more complicated... Pasi's assessment looks right to me as well. - This can only be used for soft state, because neither client or server is required to offer/accept resumption. - This doesn't affect the wire protocol at all for ordinary resumption. - RFC 4507 resumption does affect the wire protocol in the sense that the tickets change, but since they're opaque the client does not need to understand the ticket, so it should be interoperable in either case. - No stack support is actually required with ordinary resumption because the app can simply store its own data keyed by the session ID. - Stack support is required with 4507-style resumption, because the data has to be stored in the ticket. -Ekr _______________________________________________ TLS mailing list TLS@lists.ietf.org https://www1.ietf.org/mailman/listinfo/tls
- [TLS] Application state binding with TLS session … Chris Newman
- RE: [TLS] Application state binding with TLS sess… Pasi.Eronen
- Re: [TLS] Application state binding with TLS sess… Eric Rescorla