I tried to add security considerations for token reuse to the PR. Please review, this is not trivial.
Token reuse for DTLS seem hard if not impossible to do securely. I don't find Token reuse with DTLS possible to do securely..... am I missing something?
Token reuse for TLS without Observer and without Groups communication seems quite easy.
Do we need to say something about Group communication?
Do we need to say something about stateless tokens? I think the current requirements on integrity protection and replay protection protection in the stateless draft should be enough.
I tried to add security considerations for token reuse to the PR. Please review, this is not trivial.