On Thu, Nov 14, 2019, at 8:48 AM, Christopher Wood wrote: > On Thu, Nov 14, 2019, at 8:43 AM, Daniel Migault wrote: > > If tickets are sent right after the server Finished, before the the > > client Finished, these are only triggered by the clientHello - at least > > this is my understanding. > > Yes, that's correct. I thought your comment was about post-handshake > tickets (after confirmation from the client). Adding a note about this > pre-handshake completion is fine with me.
Scratch that! I forgot we limited this extension to TLS 1.3, which prohibits sending NSTs until the client finished is received (https://tools.ietf.org/html/rfc8446#section-4.6.1). Best, Chris _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
