Unbound 1.9.0 released - 0-RTT

nusenu nusenu-lists at riseup.net
Mon Mar 25 00:01:00 UTC 2019



Wouter Wijngaards via Unbound-users:
> There is also TLS session resumption support, that can be enabled with
> the tls-session-ticket-keys option.  Together with the already existing
> TCP fast open, enabled with --enable-tfo-server --enable-tfo-client,
> that enables zero RTT stream reconnections to the server.

Since session ticket based TLS resumption is obsoleted
in TLS 1.3 [1] and 0-RTT (on the TLS layer) has been introduced in TLS 1.3.

Does unbound support TLS 1.3 0-RTT aka "early data"? [2]
(downstream and upstream?)


[1] https://tools.ietf.org/html/rfc8446#section-2.2
[2] https://tools.ietf.org/html/rfc8446#section-2.3


-- 
https://twitter.com/nusenu_
https://mastodon.social/@nusenu

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.nlnetlabs.nl/pipermail/unbound-users/attachments/20190325/fd3bc06b/attachment.bin>


More information about the Unbound-users mailing list