1 / 4

Transport Layer Security (TLS) Cached Information Extension

Transport Layer Security (TLS) Cached Information Extension. S. Santesson , H. Tschofenig. Problem Statement. TLS handshakes often include fairly static information, such as the server certificate and a list of trusted Certification Authorities ( CAs ).

kipp
Download Presentation

Transport Layer Security (TLS) Cached Information Extension

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Transport Layer Security (TLS) Cached Information Extension S. Santesson, H. Tschofenig

  2. Problem Statement • TLS handshakes often include fairly static information, such as the server certificate and a list of trusted Certification Authorities (CAs). • This document defines an extension that omits the exchange of already available information. • The TLS client informs a server of cached information.

  3. Document Content • CachedObject object is sent in ClientHello • ServerHello returns CachedObject • Instead of sending the Certificate payload with the certs in it only the fingerprint is sent. • Same for list of Trusted Cas • Cached Object contains: • Type: certificate_chain(1), trusted_cas(2) • Hash Algorithm • Hash Value

  4. Next Steps? • More reviews needed.

More Related