Internet-Draft draft-ietf-uta-require-tls13-10.txt is now available. It is a
work item of the Using TLS in Applications (UTA) WG of the IETF.
Title: New Protocols Must Require TLS 1.3
Authors: Rich Salz
Nimrod Aviram
Name: draft-ietf-uta-require-tls13-10.txt
Pages: 8
Dates: 2025-03-27
Abstract:
TLS 1.2 is in use and can be configured such that it provides good
security properties. TLS 1.3 use is increasing, and fixes some known
deficiencies with TLS 1.2. Examples of this include removing error-
prone cryptographic primitives and encrypting more of the traffic so
that it is not readable by outsiders. For these reasons, new
protocols that use TLS must require and assume the existence of TLS
1.3. As DTLS 1.3 is not widely available or deployed, this
prescription does not pertain to DTLS (in any DTLS version); it
pertains to TLS only.
This document updates RFC9325 and discusses post-quantum cryptography
and fixed weaknesses in TLS 1.2 as a rationale for that update.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-uta-require-tls13/
There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-uta-require-tls13-10.html
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-uta-require-tls13-10
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
_______________________________________________
Uta mailing list -- uta@ietf.org
To unsubscribe send an email to uta-le...@ietf.org
