Recent TLS news
The Transport Layer Security protocol (TLS) plays a growing role in today’s Internet by securing many key application layer protocols. Since the publication of version 1.3 of TLS in RFC8446, it is interesting to track the deployment of this new version. This post provides pointers to recent articles and blog posts that are directly related to the evolution of TLS and could be of interest to the readers of Computer Networking : Principles, Protocols and Practice.
- David Wong published an interesting [readable version] (https://davidwong.fr/tls13/) of RFC8446 that includes more figures and removes some of the uglier details of RFC8446
- Hanno Bock gave a detailed presentation of TLS 1.3 at the Chaos Computer Club in December
- The BBC announced on Twitter that they have enabled TLS 1.3 on their main servers
- During January 2019, a growing number of US government websites used expired TLS certificates because of the shutdown caused by the fight between Donald Trump and the Congress
- Apple announced that TLS1.3 would be included in iOS122
- David McGrew posted an interesting post on how to fingerprint TLS client implementations with a database of these fingerprints. For TLS 1.3, Marting Thomson maintains a list of the known implementations on https://github.com/tlswg/tls13-spec/wiki/Implementations