Dear all, just to let you know that we have written a blog post on the current TLS 1.3 draft, with our remarks that might be of use in your upcoming meeting.
https://securewww.esat.kuleuven.be/cosic/?p=6624 Best regards, Roel Peeters and Jens Hermans PS: we are also wondering whether or not the Hello Retry Request will be included or omitted in the standard. Leaving it out will make TLS 1.3 vulnerable again to downgrade attacks ... _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
