[ech] Loading time and flushing
Stephen Farrell
stephen.farrell at cs.tcd.ie
Fri Oct 6 00:21:51 UTC 2023
Hi Watson,
Good one! Thanks for the fine comment.
On 05/10/2023 21:44, Watson Ladd wrote:
> Dear ECH enthusiasts,
>
> I think the current API from Stephen Farrel
Ahem, Farrell, i.e. not related to, but often confused with, the
Adrian F. variety in IETF contexts:-)
> for loading doesn't quite
> work. If I understand correctly, the real time of loading is used to
> determine when a key is timed out. In a fleet of servers a server may
> restart during the validity time of a key, and thus would end up
> retaining it longer. Thankfully this is not a big problem as servers
> with additional keys can only decrypt more, unlike with shared ticket
> keys where it could be more serious.
Great point. Being fleet-ignorant, I need to ponder it a bit.
If you know what you'd like, be great to get input on that.
(And I'm very happy to modify APIs to be thusly useful.)
There's also an interaction here with retry_configs I guess,
it'd seem a bad plan if one server were returning N such,
when other servers had timed out some of those decryption keys.
So if the right answer e.g. involved a notAfter equivalent,
that'd likely also affect that parameter too. OTOH, there's a
fine history of notAfter equivalents being foot-guns, so not
sure if that'd be right either.
Cheers,
S.
>
> Sincerely,
> Watson
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0xE4D8E9F997A833DD.asc
Type: application/pgp-keys
Size: 1197 bytes
Desc: OpenPGP public key
URL: <https://mta.openssl.org/pipermail/ech/attachments/20231006/e9c9b6e9/attachment.asc>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature.asc
Type: application/pgp-signature
Size: 236 bytes
Desc: OpenPGP digital signature
URL: <https://mta.openssl.org/pipermail/ech/attachments/20231006/e9c9b6e9/attachment.sig>
More information about the ech
mailing list