On Wed, Mar 4, 2020 at 5:27 PM Viktor Dukhovni <ietf-d...@dukhovni.org> wrote:
> On Wed, Mar 04, 2020 at 05:19:02PM -0800, Nick Harper wrote: > > > > Breaking interoperability. > > > > This doesn't break interoperability. If both endpoints negotiate > > ticketrequests and this new extension, the new definition applies. If one > > endpoint negotiates only this ticketrequests extension, then the > definition > > here applies. That doesn't break interoperability. > > The whole point of this discussion is that I looking to avoid the need > to define two overlapping extensions solving the same problem. The > current extension should and will suffice. > By current extension, do you mean what is currently in draft-ietf-tls-ticketrequests-04, which provides no mechanism for indicating anything about ticket reuse? If so, I'm happy with that resolution. > > We might never "bless" a way to negotiate reuse, fine, but there is > definitely no need to go out of one's way to forestall that possibility. > MT's approach of putting two values in the extension and saying nothing about reuse, or reiterating the advice in RFC 8446 solves your problem for enabling reuse without blessing that use case. > > That's frankly simply hostile, and may evidences a cultural issue in > this WG. > > Barring a defensible technical reason to preclude future evolution in a > compatible manner to support a use-case that has non-negligible if not > yet majority support, precluding it anyway can only be read as a hostile > exclusionary tactic. I object. > We make many non-technical decisions. One such decision is what work we choose to do. An explicit focus of the charter of the TLS working group is to make the protocol more privacy-friendly and reduce the amount of data visible to attackers. Reusing tickets goes against those goals. > > -- > Viktor. > > _______________________________________________ > TLS mailing list > TLS@ietf.org > https://www.ietf.org/mailman/listinfo/tls >
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
