Re: [TLS] Updated DTLS draft

2017-03-17 Thread Martin Thomson
On 18 March 2017 at 00:26, Ilari Liusvaara wrote: > Also, 1200 bytes of packet payload should be feasible. That's > well within IPv6 minMTU, and also within reach of virtually all > IPv4 links. This was the rationale in QUIC. Most links support an MTU of that size, if only because they have to

Re: [TLS] Updated DTLS draft

2017-03-17 Thread Ilari Liusvaara
On Fri, Mar 17, 2017 at 11:32:16AM +, Matt Caswell wrote: > On 17 March 2017 at 00:03, Martin Thomson wrote: > > On 17 March 2017 at 10:58, Matt Caswell wrote: > >> In DTLS1.3 the cookie is now (potentially) much larger and appears much > >> later in > >> the ClientHello, making it much more

Re: [TLS] Updated DTLS draft

2017-03-17 Thread Eric Rescorla
On Fri, Mar 17, 2017 at 4:32 AM, Matt Caswell wrote: > On 17 March 2017 at 00:03, Martin Thomson > wrote: > > On 17 March 2017 at 10:58, Matt Caswell wrote: > >> In DTLS1.3 the cookie is now (potentially) much larger and appears much > later in > >> the ClientHello, making it much more likely t

Re: [TLS] Updated DTLS draft

2017-03-17 Thread Matt Caswell
On 17 March 2017 at 00:03, Martin Thomson wrote: > On 17 March 2017 at 10:58, Matt Caswell wrote: >> In DTLS1.3 the cookie is now (potentially) much larger and appears much >> later in >> the ClientHello, making it much more likely that it will not fall >> fully within the >> first fragment. Thi

Re: [TLS] Updated DTLS draft

2017-03-16 Thread Martin Thomson
On 17 March 2017 at 10:58, Matt Caswell wrote: > In DTLS1.3 the cookie is now (potentially) much larger and appears much later > in > the ClientHello, making it much more likely that it will not fall > fully within the > first fragment. This could mean a fully stateless solution is impossible.

Re: [TLS] Updated DTLS draft

2017-03-16 Thread Matt Caswell
On 13 March 2017 at 23:41, Eric Rescorla wrote: > I have just posted a new version of the DTLS 1.3 draft, updated for > draft-19. > It's still very rough with a lot of open issues (some of which are even > noted > in the draft), and no doubt contains egregious errors. > > https://tools.ietf.org/ht

[TLS] Updated DTLS draft

2017-03-13 Thread Eric Rescorla
I have just posted a new version of the DTLS 1.3 draft, updated for draft-19. It's still very rough with a lot of open issues (some of which are even noted in the draft), and no doubt contains egregious errors. https://tools.ietf.org/html/draft-rescorla-tls-dtls13-01 As usual, comments welcome.