After allowing for a couple of weeks for WG comment, this draft addresses AD
feedback:
- Explains why DTLS is not covered
- Removes some of the IETF background work on PQ crypto
The diff link will help:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-uta-require-tls13-05
The TLS WG just pushed "requesting publication" on the companion draft
https://datatracker.ietf.org/doc/draft-ietf-tls-tls12-frozen/
On 2/11/25, 11:04 AM, "internet-dra...@ietf.org
<mailto:internet-dra...@ietf.org>" <internet-dra...@ietf.org
<mailto:internet-dra...@ietf.org>> wrote:
!-------------------------------------------------------------------|
This Message Is From an External Sender
This message came from outside your organization.
|-------------------------------------------------------------------!
Internet-Draft draft-ietf-uta-require-tls13-05.txt is now available. It is a
work item of the Using TLS in Applications (UTA) WG of the IETF.
Title: New Protocols Must Require TLS 1.3
Authors: Rich Salz
Nimrod Aviram
Name: draft-ietf-uta-require-tls13-05.txt
Pages: 8
Dates: 2025-02-11
Abstract:
TLS 1.2 is in use and can be configured such that it provides good
security properties. TLS 1.3 use is increasing, and fixes some known
deficiencies with TLS 1.2, such as removing error-prone cryptographic
primitives and encrypting more of the traffic so that it is not
readable by outsiders. For these reasons, new protocols must require
and assume the existence of TLS 1.3. As DTLS 1.3 is not widely
available or deployed, this prescription does not pertain to DTLS (in
any DTLS version); it pertains to TLS only.
This document updates RFC9325.
The IETF datatracker status page for this Internet-Draft is:
https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-ietf-uta-require-tls13/__;!!GjvTz_vk!SKOT3yQJIVe7_wAoIO5PU0pa5buXW8AEnz75aSjfHHM2xfNXXgvY2qzTQWHFvolfwPvZEQpx9pNLx_EtnlEd8Ks$
<https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-ietf-uta-require-tls13/__;!!GjvTz_vk!SKOT3yQJIVe7_wAoIO5PU0pa5buXW8AEnz75aSjfHHM2xfNXXgvY2qzTQWHFvolfwPvZEQpx9pNLx_EtnlEd8Ks$>
There is also an HTML version available at:
https://urldefense.com/v3/__https://www.ietf.org/archive/id/draft-ietf-uta-require-tls13-05.html__;!!GjvTz_vk!SKOT3yQJIVe7_wAoIO5PU0pa5buXW8AEnz75aSjfHHM2xfNXXgvY2qzTQWHFvolfwPvZEQpx9pNLx_Et2YIsvqM$
<https://urldefense.com/v3/__https://www.ietf.org/archive/id/draft-ietf-uta-require-tls13-05.html__;!!GjvTz_vk!SKOT3yQJIVe7_wAoIO5PU0pa5buXW8AEnz75aSjfHHM2xfNXXgvY2qzTQWHFvolfwPvZEQpx9pNLx_Et2YIsvqM$>
A diff from the previous version is available at:
https://urldefense.com/v3/__https://author-tools.ietf.org/iddiff?url2=draft-ietf-uta-require-tls13-05__;!!GjvTz_vk!SKOT3yQJIVe7_wAoIO5PU0pa5buXW8AEnz75aSjfHHM2xfNXXgvY2qzTQWHFvolfwPvZEQpx9pNLx_EtXJIAj0A$
<https://urldefense.com/v3/__https://author-tools.ietf.org/iddiff?url2=draft-ietf-uta-require-tls13-05__;!!GjvTz_vk!SKOT3yQJIVe7_wAoIO5PU0pa5buXW8AEnz75aSjfHHM2xfNXXgvY2qzTQWHFvolfwPvZEQpx9pNLx_EtXJIAj0A$>
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
_______________________________________________
Uta mailing list -- uta@ietf.org <mailto:uta@ietf.org>
To unsubscribe send an email to uta-le...@ietf.org <mailto:uta-le...@ietf.org>
_______________________________________________
Uta mailing list -- uta@ietf.org
To unsubscribe send an email to uta-le...@ietf.org
