O.k. this is going to be long tweet thread, but I promise it's worth it :) ... as long as you're into distributed systems, and network encryption, but then WHO ISN"T INTO DISTRIBUTED SYSTEMS AND NETWORK ENCRYPTION? Lame people, that's who ...
In TLS1.3 every connection gets its own ephemeral key, even resumed one. The only data key re-use is for 0-RTT early data, if you do it the bad way. Sadly that’s also where the url, cookie, password, and other info goes.
-
-
And the ephemeral key is the key you are referencing in the conversation between server and client? Sorry if this is a stupid question
-
Definitely NOT A STUPID QUESTION :) There's a lot of keys floating around so it's confusing. I'll do my best be breaking down the 3 main session types ...
- 4 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.