Extended Master Secret support

Question

Extended Master Secret support

Closed this issue 9 years ago · 3 comments

Since tlslite supports session resumption and doesn't support ECDHE key exchange, it is vulnerable to the 3shake attack, as such, it should implement the draft-ietf-tls-session-hash-04.

Lack of implicit full certificate verification makes this attack especially easy to perform against tlslite.

Answer 1 · 2015-04-01T19:35:55.000Z

Doesn't triple-handshake attack require renegotiation by the client? Which tlslite won't do?

Answer 2 · 2015-04-01T20:10:13.000Z

the draft does mention that resumption will work for that too

I may be reading it wrong though...

Answer 3 · 2015-04-01T20:11:52.000Z

I think resumption and renegotiation are both used?