Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8211018

Session Resumption without Server-Side State

    Details

    • Type: Enhancement
    • Status: Resolved
    • Priority: P3
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 13
    • Component/s: security-libs

      Backports

        Description

        The server stateless session resumption specification is define in RFC 5077 for TLS 1.2 and before, by making use the the SessionTicket extension. This extension has been widely supported by the major TLS vendors, like OpenSSL, GnuTLS, NSS, and Microsoft, and browsers like Firefox and Google Chrome.

        TLS 1.3 RFC includes new stateless resumption

        Session cache management is becoming a performance and scalability bottleneck.

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  ascarpino Anthony Scarpino
                  Reporter:
                  xuelei Xue-Lei Fan
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  2 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: