> that's not workable.
It's not great, however
> the reason why implementations chose to use old API to provision TLS 1.3
> PSKs
was to make the upgrade process as smooth as possible, disabling TLS 1.3 is
quite antithetical to that
Disabling TLS 1.3 for those using 1.2 PSK's is unlikely to affect most uses,
and seems the only way forward.Do you have an alternative solution? _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
