An intermediary network device participates in a secure communication session between a server and a client through a proxy client and a proxy server. The proxy client receives a first session ticket from the server that enables the proxy client to resume communications with the server in the secure communication session. The intermediary network device determines a session state of the proxy client and the proxy server. The intermediary network device encapsulates the session state of the proxy client, the session state of the proxy server, and the first session ticket as part of a second session ticket. The second session ticket enables the client to resume communications with the proxy server in the secure communication session. The intermediary network device sends the second session ticket to the client and deletes the first session ticket.