limit maximum session resumption time
TLS session key which is reused for sessions resumption allows the TLS server to track the TLS client even if the client changes its IP address.
We need to think about ways how we can limit server's ability to track whole client DNS history.
The same logic applies to TCP Fast Open (once we support it on the client side).