On Thu, Sep 17, 2015 at 03:37:29PM -0700, Brian Smith wrote: > > A conformant TLS 1.3 implementation will not be version intolerant. If the > client does insecure version fallback in response to an alert or connection > close by a conformant TLS 1.3 implementation then it is guaranteed to be > doing the wrong thing.
Let me correct that for you: A conformant TLS 1.0 implementation will not be version intolerant. If the client does version fallback then it is guaranteed to be doing the wrong thing. Kurt _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
