[openssl-users] Two sessions in a single full handshake

Salz, Rich rsalz at akamai.com
Sat Sep 29 19:18:50 UTC 2018


  *   The debug logs display two "SSL-Session" blocks in a full handshake.
Only one "SSL-Session" block is displayed in a resumption.
Why does full handshake has two sessions?

This is part of the TLS 1.3 standard.  A server can send back multiple sessions, so that a client may resume with a different session, and therefore prevent an observer from “linking” two different activities.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20180929/fcb41c22/attachment.html>


More information about the openssl-users mailing list