Closed boaks closed 2 years ago
No, the operation can just never be concluded. In DTLS, for lack of an agreed-on replay window, Request-Tag values will (at least under some circumstances) start counting up just as tokens do.
When the security context is reestablished, all can start over from short identifiers again.
AIU there is some unclarity about how DTLS 1.3 features will behave with CoAP (like, what's the implicit Uri-Host in role reversal with session resumption, and something else was mentioned I don't remember). If at any point DTLS 1.3 and CoAP interactions are sharpened, it may well be that that document allows DTLS users to start reusing Token and Request-Tag values. Fortunately, both being under full control of the client, neither will pose any compatibility risk, as the server just uses both opaquely.
Thanks! That would have been also my conclusions.
(Knowing that's too late, and also not that important: my impression is, that the "helping information for implementations" is more: Though retransmission frequently happens and usually could not be prevented, using DTLS 1.2 even with replay protection makes it impossible to conclude operations except a fresh handshake is used.)
3.5.1 states
What should happen, if the client has retransmitted the request? Could that operation then be concluded at all?