Hi all,

TLS 1.3 is a large departure from the TLS versions before it. Would there be interest in a live teaching session (via Zoom; and free, of course) later this week where I run through some of those differences?

Mods, is that acceptable for the sub? I don't want to violate any rules =)

As a teaser, here would be the differences I would talk through:

• Old protocols no longer supported
• Simpler Cipher Suites
• Fewer Cipher Suites
• All TLS 1.3 Ciphers are AEAD
• Forward Secrecy
• Removed Custom DH Groups
• Shorter Handshake (One Round Trip)
• Most of the Handshake is Encrypted
• Client Certificate is Encrypted
• Many, Many more Session Keys
• TLS 1.2- Renegotiation is gone
  • Replaced with Key Update & Post Handshake Authentication
• Session Tickets no longer risk original session
• Session Tickets protected by TLS session
• Session Resumption & PSK mode combined
  • Adds option for additional DH Exchange
  • Adds option for Early Data / 0RTT

When I've done this before (for the sake of time) I've skipped the last few differences and instead talked about Middleboxes and how they hindered upgrading to TLS 1.3, and the things TLS 1.3 did to "get through" misbehaving middleboxes.

Went ahead and scheduled the webinar:

https://www.reddit.com/r/AskNetsec/comments/zei9t1/free_live_webinar_tls_13_and_how_it_differs_from/?

Hope to see you all there =)