On Tue, Aug 02, 2016 at 08:40:08PM +1000, Martin Thomson wrote: > On 2 August 2016 at 17:48, Ilari Liusvaara <ilariliusva...@welho.com> wrote: > > Also, what exact base key does that Finished use? Client's current > > traffic secret at the beginning of the Finished (the sequence of > > traffic secrets is the same client and server, but the values may > > be out of sync.)? > > > Presumably it's the traffic_secret_N that is active at the start of > the sequence of messages; also presumably, the sequence of messages > cannot be interrupted by something like a KeyUpdate.
It can't be interrupted by KeyUpdate from client, but can be interrupted by KeyUpdate by server. (Also, I think base key only appears in Finished). -Ilari _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
