subject:"Re\: \[TLS\] DTLS 1.3 epochs vs message_seq overflow"

Re: [TLS] DTLS 1.3 epochs vs message_seq overflow

2024-04-16 Thread Tschofenig, Hannes

for them. Ciao Hannes From: TLS On Behalf Of David Benjamin Sent: Friday, April 12, 2024 1:16 AM To: Cc: Nick Harper Subject: Re: [TLS] DTLS 1.3 epochs vs message_seq overflow On Thu, Apr 11, 2024 at 7:12 PM David Benjamin mailto:david...@chromium.org>> wrote: Hi all, In reviewing RF

Re: [TLS] DTLS 1.3 epochs vs message_seq overflow

2024-04-11 Thread David Benjamin

On Thu, Apr 11, 2024 at 7:12 PM David Benjamin wrote: > Hi all, > > In reviewing RFC 9147, I noticed something a bit funny. DTLS 1.3 changed > the epoch number from 16 bits to 64 bits, though with a requirement that > you not exceed 2^48-1. I assume this was so that you're able to rekey more > th