subject:"Re\: \[TLS\] TLS 1.3 and RFC 4279, Pre\-Shared Key Ciphersuites"

Re: [TLS] TLS 1.3 and RFC 4279, Pre-Shared Key Ciphersuites

2015-11-29 Thread Jayaraghavendran k

uelei@vimino.com] Sent: 27 November 2015 20:34 To: Jayaraghavendran k Cc: tls@ietf.org Subject: Re: [TLS] TLS 1.3 and RFC 4279, Pre-Shared Key Ciphersuites It is a great idea to use PSK for session resumption. However, as the ServerKeyExchange.psk_identity_hint disappears in TLS 1.3,

Re: [TLS] TLS 1.3 and RFC 4279, Pre-Shared Key Ciphersuites

2015-11-27 Thread Xuelei Fan

It is a great idea to use PSK for session resumption. However, as the ServerKeyExchange.psk_identity_hint disappears in TLS 1.3, I was wondering, it may be not easy to make an upgrade for those PSK implementation that relies on ServerKeyExchange.psk_identity_hint. Considering the following initi

Re: [TLS] TLS 1.3 and RFC 4279, Pre-Shared Key Ciphersuites

2015-11-27 Thread Jayaraghavendran k

Hi Xuelei, As per RFC 4279 also, both the client and server are supposed to have a set of “Identity – key” pair on either sides. The “ServerKeyExchange.psk_identity_hint” only helps the client in choosing an “identity-key” pair from a list of several “identity-key pairs” the client may have.