The Cloudflare mTLS vulnerability - A Deep Dive Analysis
The Backend Engineering Show with Hussein Nasser
00:00
TLS Session Resumption and Legoland
TLS session resumption is a way of storing the knowledge that we've communicated once. If I establish a new connection somehow to the same domain, to the same server, then I can provide you with a ticket if we will. So sending it across the wire both ways can take a long time, right? And it slows down the handshake as a result. But what really happens is actually when we want with the client and the server supports the session resumption,. The client will propose something in their TLS extension in the client. Let's now go through the technical details which we love and adore.
Transcript
Play full episode
