Re: [TLS] TLSv1.3 Cookies

2017-09-13 Thread Matt Caswell
On 13 September 2017 at 17:08, Ilari Liusvaara wrote: >> > Yes, if one receives a ClientHello with both Cookie and EarlyData, one >> > can reply with a fatal alert, because that is not supposed to happen. >> >> That isn't quite the scenario I was talking about. Rather your case >> (2) above in a s

Re: [TLS] TLSv1.3 Cookies

2017-09-13 Thread Ilari Liusvaara
On Wed, Sep 13, 2017 at 04:24:37PM +0100, Matt Caswell wrote: > On 13 September 2017 at 16:09, Ilari Liusvaara > wrote: > > On Wed, Sep 13, 2017 at 03:53:46PM +0100, Matt Caswell wrote: > >> I am looking at trying to implement the TLSv1.3 stateless cookie > >> mechanism (in order to be able to su

Re: [TLS] TLSv1.3 Cookies

2017-09-13 Thread Eric Rescorla
On Wed, Sep 13, 2017 at 8:40 AM, Matt Caswell wrote: > On 13 September 2017 at 16:12, Eric Rescorla wrote: > > On Wed, Sep 13, 2017 at 7:53 AM, Matt Caswell wrote: > >> > >> I am looking at trying to implement the TLSv1.3 stateless cookie > >> mechanism (in order to be able to support QUIC stat

Re: [TLS] TLSv1.3 Cookies

2017-09-13 Thread Matt Caswell
On 13 September 2017 at 16:12, Eric Rescorla wrote: > On Wed, Sep 13, 2017 at 7:53 AM, Matt Caswell wrote: >> >> I am looking at trying to implement the TLSv1.3 stateless cookie >> mechanism (in order to be able to support QUIC stateless retries). >> >> I am not clear how cookies are supposed to

Re: [TLS] TLSv1.3 Cookies

2017-09-13 Thread Matt Caswell
On 13 September 2017 at 16:11, Short, Todd wrote: > One comment below. > -- > -Todd Short > // tsh...@akamai.com > // "One if by land, two if by sea, three if by the Internet." > > On Sep 13, 2017, at 10:53 AM, Matt Caswell wrote: > > I am looking at trying to implement the TLSv1.3 stateless cook

Re: [TLS] TLSv1.3 Cookies

2017-09-13 Thread Matt Caswell
On 13 September 2017 at 16:09, Ilari Liusvaara wrote: > On Wed, Sep 13, 2017 at 03:53:46PM +0100, Matt Caswell wrote: >> I am looking at trying to implement the TLSv1.3 stateless cookie >> mechanism (in order to be able to support QUIC stateless retries). >> >> I am not clear how cookies are suppo

Re: [TLS] TLSv1.3 Cookies

2017-09-13 Thread Eric Rescorla
On Wed, Sep 13, 2017 at 7:53 AM, Matt Caswell wrote: > I am looking at trying to implement the TLSv1.3 stateless cookie > mechanism (in order to be able to support QUIC stateless retries). > > I am not clear how cookies are supposed to interact with early_data. > Consider the scenario where a ser

Re: [TLS] TLSv1.3 Cookies

2017-09-13 Thread Short, Todd
One comment below. -- -Todd Short // tsh...@akamai.com // "One if by land, two if by sea, three if by the Internet." On Sep 13, 2017, at 10:53 AM, Matt Caswell mailto:fr...@baggins.org>> wrote: I am looking at trying to implement the TLSv1.3 stateless cookie mechanism (

Re: [TLS] TLSv1.3 Cookies

2017-09-13 Thread Ilari Liusvaara
On Wed, Sep 13, 2017 at 03:53:46PM +0100, Matt Caswell wrote: > I am looking at trying to implement the TLSv1.3 stateless cookie > mechanism (in order to be able to support QUIC stateless retries). > > I am not clear how cookies are supposed to interact with early_data. > Consider the scenario whe