[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
|
[cf-dev] DTLS handshake message encryption
|
Hi,
I am currently working on some issues with the DTLS handshake in Scandium.
While going through the ResumingServerHandshaker I noticed that it encrypts all messages sent to the client according to the current session state. While going through section 7.4 of the TLS 1.2 [1] spec I found this passage:
"Handshake messages are supplied to the TLS record layer, where they are encapsulated within one or more TLSPlaintext structures, which are processed and transmitted as specified by the current active session state."
My understanding of this is that handshake messages are never encrypted but are always transmitted in plaintext (except for the Change Cipher Spec message which actually is not a handshake message).
Does anybody have any deeper insight into this? Matthias, have you given this more thought yet?
[1] http://tools.ietf.org/html/rfc5246#section-7.4
Regards,
Kai
