On Fri, Oct 27, 2017 at 06:14:22AM -0700, Eric Rescorla wrote: > On Fri, Oct 27, 2017 at 5:25 AM, Ilari Liusvaara <ilariliusva...@welho.com> > wrote: > > > Also, on fast transmission, loss burst of ~2000 packets doesn't take > > > > much time. Such loss burst could result, e.g., from transient routing > > > > failure. One might want to discuss how to prevent desyncs from those. > > > > > > > > > > Sure. The answer for this is to use the longer header :) > > > > Might put a note that if one should use longer header if there can be > > more than about 2000 consequtive lost packets. > >
" +Note: the DTLSShortCiphertext format does not allow for easy +reconstruction of sequence numbers if ~2000 datagrams in sequence +are lost. Implementations which may encounter this situation +SHOULD use the DTLSDCiphertext format. " I presume s/DTLSDCiphertext/DTLSCiphertext/ as I don't see the definition of "DTLSDCiphertext" anywhere. -Ilari _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
