Hi, How does replay protection of Post-handshake messages work in DTLS 1.3 if the per-record replay-protection mechanism is turned off?
1. Is the post-handshake messages replay protected in some other way, which I miss? 2. Should RFC 9147 state that the per-record replay-protection mechanism can only be turned off for application data? (I could not find anything in RFC 9147 stating something like this). (things like post-handshake authentication need replay protection in some way) Cheers, John Preuß Mattsson
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
