Hi
I agree with point #2. I'll leave it to some of the session resumption experts
to comment on point #1.
It's a little late for "Merry Christmas", so just happy new year.
Yoav
-Original Message-
From: ipsec-boun...@ietf.org [mailto:ipsec-boun...@ietf.org] On Behalf Of
Valery Smyslov
Hi Yoav, Valery,
Valery is right that the IKE_SESSION_RESUME exchange does not have a
protected payload.
But his new text is incorrect, since the (session resumption) ticket is
sent in IKE_SESSION_RESUME and not in the immediately following IKE_AUTH
(he might have got it mixed with the ticke
Hi Yaron,
oh, you've catched one more error in this text - it mixed up terms "ticket"
(used in RFC5723 as Session Resumption ticket) and "token"
(used in RFC6290 as QCD token). I din't notice that. You are right,
that "ticket" (Session Resumption) is sent in IKE_SESSION_RESUME,
but RFC6290 talks
