Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8211018

Session Resumption without Server-Side State

    XMLWordPrintable

Details

    • Enhancement
    • Status: Resolved
    • P3
    • Resolution: Fixed
    • None
    • 13
    • security-libs

    Backports

      Description

        The server stateless session resumption specification is defined in RFC 5077 for TLS 1.2 and before, by making use of the SessionTicket extension. This extension has been widely supported by the major TLS vendors, like OpenSSL, GnuTLS, NSS, and Microsoft, and browsers like Firefox and Google Chrome.

        TLS 1.3 RFC includes new stateless resumption

        Session cache management is becoming a performance and scalability bottleneck.

        Attachments

          Issue Links

            Activity

              People

                ascarpino Anthony Scarpino
                xuelei Xuelei Fan
                Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved: