Alan DeKok ; wrote:
>The issue with session resumption is much larger than just the EAP method.
>This subject should ideally be discussed in the "Security Considerations"
>section of the new EAP-TLS draft.
I agree
>i.e. We should define precisely what a "session" is.
>
>Right now, the draft t
> On Feb 20, 2019, at 8:53 AM, John Mattsson wrote:
> draft-ietf-emu-eap-tls13 is actually very careful to not talk about "session
> resuption", it talks about "resumption". The reason is that "session" is not
> well defined and probably not the same in TLS and EAP. In TLS 1.2 or earlier,
> "
Agree 100% Alan. Now is the time to fix this.
-Original Message-
From: Emu on behalf of Alan DeKok
Date: Wednesday, February 20, 2019 at 9:03 AM
To: John Mattsson
Cc: "emu@ietf.org"
Subject: Re: [Emu] Notes on session resumption with TLS-based EAP methods
> On Feb 20, 2019, at 8:53
