Anti replay #1005
Closed
Anti replay #1005
Commits on Apr 30, 2017
-
Add a new derivation stage for PSKs off of the RMS so that each session
ticket is associated with a different PSK. This provides somewhat increased security in cases where you have multiple PSKs for the same connection and one PSK is compromised. The motivation here is that in cases where the server maintains a session database rather than self-encrypted tickets, the server might delete tickets as they are used,. This change provides FS for connections which have been used, even if there are other outstanding tickets in the session cache associated with the same original connection.
-
Commits on May 4, 2017
-
Add extensive discussion of 0-RTT anti-replay as suggested by
Colm MacCarthaigh. Specifically: - Describe both one time tickets and client hello storage ("strike register") mechanisms and SHOULD-level require people to do them. - Provide a security considerations section describing the threats.
Commits on May 13, 2017
Commits on May 17, 2017
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.