On Mon, Apr 27, 2020, at 17:06, Hannes Tschofenig wrote: > (*): Even if we optimize the CID away with cTLS the question about the > security implications will surface again.
I think that cTLS is the answer to the size issue. But there, the rule tends to be that removing from the wire doesn't also remove from the canonical value that is processed by the stack, so we might be able to send without a CID, but re-insert the value before processing. As the canonical form, DTLS always including the value seems fine to me. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
