On Thu, Nov 21, 2019, at 14:19, David Schinazi wrote: > Regarding Viktor's suggestion, I personally believe it would increase the > complexity of the proposal, and I don't see use-cases compelling enough > to warrant that complexity. I would rather keep this proposal as simple as > possible.
I see that I didn't respond to this. I support David's view. Even the suggestion that clients that resume only request one assumes that clients only want one. The client probably knows better than we do. I would rather say nothing about the number and keep it simple. 0 means 0, 1 means 1, N means N. FWIW, the cost of oversupply is often marginal, depending on circumstances. In a client-speaks-first protocol with no client certificate, the server can occupy the first round trip with tickets and generally gain a performance advantage (as sending more will increase the congestion window in most cases). Otherwise, there are usually quiescent periods that can be exploited for sending tickets. And tickets are small, and cheap to generate. With one exception: if you are relying on client authentication and packing that into tickets, I'm sorry. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
