Re: [TLS] Extensions and session resumption

To: <badra at isima.fr>, <mike-list at pobox.com>
Subject: Re: [TLS] Extensions and session resumption
From: <Pasi.Eronen at nokia.com>
Date: Mon, 5 May 2008 12:36:13 +0300
Cc: tls at ietf.org
Delivered-to: ietfarch-tls-web-archive at core3.amsl.com
Delivered-to: tls at core3.amsl.com
In-reply-to: <56912.78.113.143.138.1209812943.squirrel@www.isima.fr>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
References: <481C40CF.6060708@pobox.com> <56912.78.113.143.138.1209812943.squirrel@www.isima.fr>
Sender: tls-bounces at ietf.org
Thread-index: AcitDqzIFSy3pFJGRfiFMa2a6JbTNwBhFnAQ
Thread-topic: [TLS] Extensions and session resumption

badra at isima.fr wrote:

> In [RFC4366] section 3:
> 
>       If the resumption request is denied, the use of the extensions
>       is negotiated as normal.
> 
>       If, on the other hand, the older session is resumed, then the
>       server MUST ignore the extensions and send a server hello
>       containing none of the extension types.  In this case, the
>       functionality of these extensions negotiated during the
>       original session initiation is applied to the resumed session.

The preceeding paragraph is quite important in this context:

        Note also that all the extensions defined in this section are
        relevant only when a session is initiated.  When a client
        includes one or more of the defined extension types in an
        extended client hello while requesting session resumption:

Thus, it's possible to define extensions that are relevant also 
when resuming a session, and the text "server MUST ignore..." 
does not apply to those. (We already have one such extension,
RFC 5077).

Best regards,
Pasi
_______________________________________________
TLS mailing list
TLS at ietf.org
https://www.ietf.org/mailman/listinfo/tls

References:
- [TLS] Extensions and session resumption
  - From: Mike
- Re: [TLS] Extensions and session resumption
  - From: badra

Prev by Date: Re: [TLS] Extensions and session resumption
Next by Date: Re: [TLS] draft-badra-tls-psk-new-mac-aes-gcm as WG item (was: RE: Re: TLS document status update )
Previous by thread: Re: [TLS] Extensions and session resum ption
Next by thread: Re: [TLS] Extensions and session resumption
Index(es):
- Date
- Thread

Re: [TLS] Extensions and session resumption

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.