Opened 13 years ago

#110 new enhancement

Finished message binding: Explicit Vs. Implicit

Reported by: jsalowey@… Owned by:
Priority: critical Milestone: DISCUSS
Component: draft-ietf-tls-renegotiation-00 Version: 02
Severity: Active WG Document Keywords:
Cc:

Description

Multiple people have raised this issue on the list.

There are two different approaches towards processing finished message data.

1) in the current RI approach the finish message data from the previous exchange is included in hello extensions. The participants must then compare them to make sure they are accurate. If the handshake completes then the finish messages are included in the handshake via the extension.

2) The use of the new proposal is signaled and the finish messages are included in the handshake implicitly.

Approach 1) has the advantage that it does not modify the internals of the current handshake.

Approach 2) has the advantage that it requires less data to be exchanged. There is also a claim that this approach is less difficult for implementers to get wrong.

Change History (0)

Note: See TracTickets for help on using tickets.