PSK based resumption vs session ID/ticket based resumption in TLS

bobthebuilder

8/28/23, 6:30 AM

I was reading about TLS 1.3, and noticed how session resumption was done via PSKs instead of Session IDs/Session Tickets. But from what I've understood, PSKs just seem like a combination of Session IDs and Session Tickets mechanism (the psk identity acting as session IDs and the New Session Ticket acting as the session ticket).

My question is, why has the PSK method been employed over the previous two methods in TLS 1.3? Are there any advantages of having chosen this? When reading about Session Tickets, I thought it was pretty neat, apart from the single point of failure existing due to the secret key used for decrypting the session ticket. But the PSK method also need psk identity which needs to be stored in the server cache. Isn't that disadvantageous, as the server has to store the IDs? So why are PSKs used at all?

Related to the Session Ticket mechanism, I also wanted to know if the servers store a separate private keys (for encrypting the session tickets) for separate clients? Is that how session tickets are disadvantageous because the server has to maintain separate keys for separate client sessions?

0 + 0

tls

protocol-design

dave_thompson_085

8/29/23, 10:54 AM

Although the fields in 1.3 are named/described as 'identity', it only needs to be unique and can be up to 64KB. A ticket in the 4507/5077 sense is by construction unique and should fit in 64KB, so it can _be_ an 'identity' that requires no actual storage on server. Effectively dupe https://crypto.stackexchange.com/questions/53806/does-tls-1-3-really-send-psks-encrypted . Since one PSK mechanism (as modified for 1.3) supports all three usages, why make the protocol more complicated and implementation harder?

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: PSK based resumption vs session ID/ticket based resumption in TLS

TH: การเริ่มต้นใหม่ตาม PSK เทียบกับการเริ่มต้นใหม่ตาม ID เซสชัน/ตั๋วใน TLS

RO: Reluare bazată pe PSK vs reluare bazată pe ID-ul sesiunii/bilet în TLS

RU: Возобновление на основе PSK по сравнению с возобновлением на основе идентификатора сеанса/тикета в TLS

VI: Tiếp tục dựa trên PSK so với tiếp tục dựa trên ID phiên/vé trong TLS

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.