Do agents need to support the Cookies extension (used in HelloRetryRequest)? #219

mfoltzgoogle · 2019-09-11T15:50:21Z

Do OSP agents need to support TLS cookies (used to cache renegotiation outcomes)?

It seems like there is little to renegotiate, but the TLS spec indicates it's a mandatory extension, so it might be easier to support it than turn it off.

mfoltzgoogle · 2020-10-18T19:15:18Z

https://www.w3.org/2019/09/15-webscreens-minutes.html#x05

ACTION: mfoltzgoogle to remove notes about the TLS profile; if you use 1.3, you can get away of specifying profile, because 1.3 gets rid of all the bad choices.

mfoltzgoogle · 2021-03-02T22:47:57Z

Addressed by #252.

mfoltzgoogle added security-tracker Group bringing to attention of security, or tracked by the security Group but not needing response. v1-spec labels Sep 11, 2019

plehegar mentioned this issue Feb 14, 2020

Do agents need to support the Cookies extension (used in HelloRetryRequest)? w3c/security-review#4

Open

mfoltzgoogle mentioned this issue Feb 22, 2021

Second Screen WG/CG - 2021 Q1 virtual meeting w3c/secondscreen-wg#2

Open

15 tasks

anssiko mentioned this issue Feb 23, 2021

[meta] Publish First Public Working Draft #249

Closed

2 tasks

mfoltzgoogle mentioned this issue Feb 23, 2021

Update TLS usage. #252

Merged

mfoltzgoogle closed this as completed Mar 2, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Do agents need to support the Cookies extension (used in HelloRetryRequest)? #219

Do agents need to support the Cookies extension (used in HelloRetryRequest)? #219

mfoltzgoogle commented Sep 11, 2019

mfoltzgoogle commented Oct 18, 2020

mfoltzgoogle commented Mar 2, 2021

Do agents need to support the Cookies extension (used in HelloRetryRequest)? #219

Do agents need to support the Cookies extension (used in HelloRetryRequest)? #219

Comments

mfoltzgoogle commented Sep 11, 2019

mfoltzgoogle commented Oct 18, 2020

mfoltzgoogle commented Mar 2, 2021