The intention here was to compensate for not having psk_identity_hint. However, it also allows you to do resumption of PSK-established sessions.
It would be a fairly significant simplification to say you could only have one PSK, because then we could easily require the client to prove knowledge of the key, for instance by stuffing a MAC at the end of the ClientHello as we discussed in Berlin. So: Is there any demand for multiple identities? I do not believe there is any in the Web context. If not, we should remove this feature. -Ekr On Thu, Aug 11, 2016 at 1:39 AM, Hannes Tschofenig < hannes.tschofe...@gmx.net> wrote: > Hi all, > > the currently defined “pre_shared_key” extension allows clients to send > a list of the identities. I was wondering in what use cases this is > useful and what policy guides the server to pick the most appropriate > psk identity. I couldn't find any discussion in the document about this > aspect. > > Ciao > Hannes > > > _______________________________________________ > TLS mailing list > TLS@ietf.org > https://www.ietf.org/mailman/listinfo/tls > >
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
