IETF Logo Mail Archive

Re: [TLS] First TLS cached information draft posted

Stefan Santesson <stefan@aaa-sec.com> Tue, 16 June 2009 15:01 UTC

Return-Path: <stefan@aaa-sec.com>
X-Original-To: tls@core3.amsl.com
Delivered-To: tls@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2D7843A6B97 for <tls@core3.amsl.com>; Tue, 16 Jun 2009 08:01:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.171
X-Spam-Level:
X-Spam-Status: No, score=-2.171 tagged_above=-999 required=5 tests=[AWL=0.078, BAYES_00=-2.599, HELO_EQ_SE=0.35]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Lp9NdKKYR14d for <tls@core3.amsl.com>; Tue, 16 Jun 2009 08:01:39 -0700 (PDT)
Received: from s87.loopia.se (s87.loopia.se [194.9.95.112]) by core3.amsl.com (Postfix) with ESMTP id 04DE13A6B99 for <TLS@ietf.org>; Tue, 16 Jun 2009 08:01:38 -0700 (PDT)
Received: (qmail 31213 invoked from network); 16 Jun 2009 14:59:51 -0000
Received: from s34.loopia.se (HELO s24.loopia.se) ([194.9.94.70]) (envelope-sender <stefan@aaa-sec.com>) by s87.loopia.se (qmail-ldap-1.03) with AES256-SHA encrypted SMTP for <TLS@ietf.org>; 16 Jun 2009 14:59:51 -0000
Received: (qmail 87352 invoked from network); 16 Jun 2009 14:59:45 -0000
Received: from 213-64-142-21-no153.business.telia.com (HELO [192.168.0.17]) (stefan@fiddler.nu@[213.64.142.21]) (envelope-sender <stefan@aaa-sec.com>) by s24.loopia.se (qmail-ldap-1.03) with DES-CBC3-SHA encrypted SMTP for <simon@josefsson.org>; 16 Jun 2009 14:59:45 -0000
User-Agent: Microsoft-Entourage/12.19.0.090515
Date: Tue, 16 Jun 2009 16:59:44 +0200
From: Stefan Santesson <stefan@aaa-sec.com>
To: Simon Josefsson <simon@josefsson.org>, martin.rex@sap.com
Message-ID: <C65D8000.2A74%stefan@aaa-sec.com>
Thread-Topic: [TLS] First TLS cached information draft posted
Thread-Index: AcnukxUybO+3oQBRnU6tn6RqGniNxg==
In-Reply-To: <87ws7lfq1d.fsf@mocca.josefsson.org>
Mime-version: 1.0
Content-type: text/plain; charset="US-ASCII"
Content-transfer-encoding: 7bit
Cc: TLS@ietf.org
Subject: Re: [TLS] First TLS cached information draft posted
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 Jun 2009 15:01:40 -0000

Simon,

This is a good suggestion. I have added this text in the edit pool of next
version.

Unfortunately I'm an nroff hacker :)

/Stefan

On 09-06-09 4:19 PM, "Simon Josefsson" <simon@josefsson.org> wrote:

> Martin Rex <Martin.Rex@sap.com> writes:
> 
>> It might be sensible for the client to manage cache entries based
>> on several attributes, and in particular distuigish also by the
>> "server name" as used in the TLS extension "Server name indication"
>> in order to support TLS-compatible virtual hosting.
> 
> That is a good point, and it would help implementers to make this
> explicit.  Stefan, how about adding a sentence to explain this?  After
> this paragraph
> 
>    Clients MAY include an extension of type "cached_information" in the
>    (extended) client hello, which SHALL contain at least one
>    CachedObject as specified in section 2.
> 
> you could add
> 
>    Clients MAY need the ability to cache different values depending on
>    other information in the Client Hello that modify what values the
>    server uses, in particular the Server Name Indication [RFC4366]
>    value.
> 
> If XML source is available, I could send you a patch. ;)
> 
> Thanks,
> /Simon
> _______________________________________________
> TLS mailing list
> TLS@ietf.org
> https://www.ietf.org/mailman/listinfo/tls

v2.23.0 | Report a Bug | By Email