> On May 3, 2017, at 6:29 PM, Colm MacCárthaigh <c...@allcosts.net> wrote:
>
> Just an aside related to that; it can be useful to fuzz ticket lifetimes a
> bit so all of the tickets from a STEK don't expire at exactly the same time.
> That can lead to a lot of painful renegotiations happening at once.
More than "a bit". In Postfix session tickets have a constant lifetime
regardless
of whether they were issued at the beginning of end of the current STEKs
duration
is the STEK encryption key. This works, because each STEK is retained as a
decryption-only key for a second "lifetime" while the next key is employed to
encrypt (and decrypt) new sessions.
There is no clustering of session expirations. The plan is to do the same in
the default-on key rotation for OpenSSL.
--
Viktor.
_______________________________________________
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls
