On Tue, Nov 26, 2024, 9:38 AM Salz, Rich <rs...@akamai.com> wrote: > > The draft isn't a minor change: it makes handshake and record > > layer changes so everyone would need to install new software and > > suffer similar compat issues as with a 1.3 update. > > Compare a diff for this versus a 1.3 implementation. The latter is huge. > Also, the former can be considered as a bugfix that closes security holes. > TLS 1.3 also fixes things, but it's not really just a bugfix. >
Either you have new code and break compat or not. That's what really makes the planning hard IMHO. To the extent there is risk associated the widespread use of TLS 1.3 is a significant mitigating factor for undiscovered bugs rolling this out won't have. Who is interested in actually implementing and deploying this? > > >
_______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
