Re: [TLS] Extensions and session resumption

To: tls at ietf.org
Subject: Re: [TLS] Extensions and session resumption
From: Eric Rescorla <ekr at networkresonance.com>
Date: Thu, 15 May 2008 09:02:34 -0700
Delivered-to: ietfarch-tls-web-archive at core3.amsl.com
Delivered-to: tls at core3.amsl.com
In-reply-to: <20080509194032.BAA9550825@romeo.rtfm.com>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
References: <481C40CF.6060708@pobox.com> <56912.78.113.143.138.1209812943.squirrel@www.isima.fr> <481C7EB3.9050607@pobox.com> <20080503153257.B86C35081A@romeo.rtfm.com> <20080509194032.BAA9550825@romeo.rtfm.com>
Sender: tls-bounces at ietf.org
User-agent: Wanderlust/2.14.0 (Africa) Emacs/21.3 Mule/5.0 (SAKAKI)

Here's my lightly revised version of this text post comments
from Mike and Pasi. 

Joe, can you pls. issue a last call for comments on this text?

Thanks,
-Ekr


In 7.4.1.4, after "as described in Section 12" and before "There are
subtle":

   An extension type MUST NOT appear in the ServerHello unless the
   same extension type appeared in the corresponding ClientHello.  If
   a client receives an extension type in ServerHello that it did not
   request in the associated ClientHello, it MUST abort the handshake
   with an unsupported_extension fatal alert.

   Nonetheless, "server-oriented" extensions may be provided in the
   future within this framework.  Such an extension (say, of type x)
   would require the client to first send an extension of type x in
   ClientHello with empty extension_data to indicate that it supports
   the extension type.  In this case, the client is offering the
   capability to understand the extension type, and the server is
   taking the client up on its offer.

   When multiple extensions of different types are present in the
   ClientHello or ServerHello messages, the extensions MAY appear in
   any order. There MUST NOT be more than one extension of the same
   type.

   Finally, note that extensions can be sent both when starting a new
   session and when requesting session resumption.  Indeed, a client
   that requests session resumption does not in general know whether
   the server will accept this request, and therefore it SHOULD send
   the same extensions as it would send if it were not attempting
   resumption.	

   In general, the specification of each extension type needs to
   describe the effect of the extension both during full handshake and
   session resumption. Most current TLS extensions are relevant only
   when a session is initiated: when an older session is resumed, the
   server does not process these extensions in Client Hello, and does
   not include them in Server Hello. However, some extensions may
   specify different behavior during session resumption.


Also, we should add to end of Section 7.4.1.4.1:

   When performing session resumption, this extension is not included
   in Server Hello, and the server ignores the extension in Client
   Hello (if present).


_______________________________________________
TLS mailing list
TLS at ietf.org
https://www.ietf.org/mailman/listinfo/tls

References:
- [TLS] Extensions and session resumption
  - From: Mike
- Re: [TLS] Extensions and session resumption
  - From: badra
- Re: [TLS] Extensions and session resumption
  - From: Mike
- Re: [TLS] Extensions and session resumption
  - From: Eric Rescorla
- Re: [TLS] Extensions and session resumption
  - From: Eric Rescorla

Prev by Date: Re: [TLS] Extensions and session resum ption
Next by Date: [TLS] Last Call for comments on modifications to section 7.4.1.4 of draft-ietf-tls-rfc4346-bis
Previous by thread: Re: [TLS] Extensions and session resum ption
Next by thread: Re: [TLS] Extensions and session resumption
Index(es):
- Date
- Thread

Re: [TLS] Extensions and session resumption

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.