> It's worth keeping in mind this recent paper about Replay attacks against > HTTPS. TL;DR: Attackers can already force a browser to replay requests > basically at will. As a result, it's not clear that 0-RTT replay makes this > situation worse.
TLS is more than just browsers, which is what started this thread I think _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
