On Tue, Aug 2, 2016 at 5:25 AM, Ilari Liusvaara <ilariliusva...@welho.com> wrote:
> On Tue, Aug 02, 2016 at 08:40:08PM +1000, Martin Thomson wrote: > > On 2 August 2016 at 17:48, Ilari Liusvaara <ilariliusva...@welho.com> > wrote: > > > Also, what exact base key does that Finished use? Client's current > > > traffic secret at the beginning of the Finished (the sequence of > > > traffic secrets is the same client and server, but the values may > > > be out of sync.)? > > > > > > Presumably it's the traffic_secret_N that is active at the start of > > the sequence of messages; also presumably, the sequence of messages > > cannot be interrupted by something like a KeyUpdate. > > It can't be interrupted by KeyUpdate from client, but can be interrupted > by KeyUpdate by server. > Not sure why that matters. Key Updates are unidirectional. I think it clearly has to be sender's. -Ekr > (Also, I think base key only appears in Finished). > > > -Ilari > > _______________________________________________ > TLS mailing list > TLS@ietf.org > https://www.ietf.org/mailman/listinfo/tls >
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls