Re: [TLS] First TLS cached information draft posted

To: martin.rex at sap.com
Subject: Re: [TLS] First TLS cached information draft posted
From: Simon Josefsson <simon at josefsson.org>
Date: Tue, 09 Jun 2009 16:19:26 +0200
Cc: TLS at ietf.org
Delivered-to: tls at core3.amsl.com
In-reply-to: <200906091347.n59DlYva003622 at fs4113.wdf.sap.corp> (Martin Rex's message of "Tue, 9 Jun 2009 15:47:34 +0200 (MEST)")
List-archive: <http://www.ietf.org/mail-archive/web/tls>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
Openpgp: id=B565716F; url=http://josefsson.org/key.txt
References: <87fxe9ki6m.fsf at mocca.josefsson.org> <200906091347.n59DlYva003622 at fs4113.wdf.sap.corp>
User-agent: Gnus/5.110011 (No Gnus v0.11) Emacs/23.0.94 (gnu/linux)

Martin Rex <Martin.Rex at sap.com> writes:

> It might be sensible for the client to manage cache entries based
> on several attributes, and in particular distuigish also by the
> "server name" as used in the TLS extension "Server name indication"
> in order to support TLS-compatible virtual hosting.

That is a good point, and it would help implementers to make this
explicit.  Stefan, how about adding a sentence to explain this?  After
this paragraph

   Clients MAY include an extension of type "cached_information" in the
   (extended) client hello, which SHALL contain at least one
   CachedObject as specified in section 2.

you could add

   Clients MAY need the ability to cache different values depending on
   other information in the Client Hello that modify what values the
   server uses, in particular the Server Name Indication [RFC4366]
   value.

If XML source is available, I could send you a patch. ;)

Thanks,
/Simon

Follow-Ups:
- Re: [TLS] First TLS cached information draft posted
  - From: Stefan Santesson

References:
- Re: [TLS] First TLS cached information draft posted
  - From: Simon Josefsson
- Re: [TLS] First TLS cached information draft posted
  - From: Martin Rex

Prev by Date: Re: [TLS] First TLS cached information draft posted
Next by Date: [TLS] I-D ACTION:draft-ietf-tls-cached-info-00.txt
Previous by thread: Re: [TLS] First TLS cached information draft posted
Next by thread: Re: [TLS] First TLS cached information draft posted
Index(es):
- Date
- Thread

Re: [TLS] First TLS cached information draft posted

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.