On Tue, May 2, 2017 at 11:08 AM, Viktor Dukhovni <ietf-d...@dukhovni.org> wrote:
> Yes, if the change is narrowly tailored to 0-RTT, *and* if server TLS > stacks > don't stop supporting ticket reuse for "normal" (not 0-RTT) sessions, then > I have no direct concerns with changes that affect 0-RTT alone. > Great - I added a small errata comment on the github issue just recording that too. In that case, I only reason I see to stop using tickets multiple times is to protect the obfuscated age. It reads to me like its purpose would just be defeated. Is it really that hard for clients to use a 1-for-1 use-a-ticket-get-a-ticket approach? -- Colm
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
