Request for feedback from server/client implementers using\n non-OpenSSL TLS stacks

Rohan Kumar seirdy at seirdy.one
Mon Nov 8 03:47:02 GMT 2021

Previous message (by thread): Request for feedback from server/client implementers using\n non-OpenSSL TLS stacks
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Nov 08, 2021 at 01:57:53AM +0000, tidux at sdf.org wrote:
>It looks like BearSSL is just waiting for the TLS 1.3 RFC to be
>finalized, which is a totally reasonable thing to do.  I would encourage
>a similar level of patience for Gemini mandating TLS 1.3.

TLS 1.3 was finalized in 2018:
https://datatracker.ietf.org/doc/html/rfc8446

This is acknowledged in the first sentence of BearSSL's TLS 1.3 status 
page:
https://bearssl.org/tls13.html

> Long draft periods cause early adopters to have all kinds of wonderful
> broken implementations that must then be worked around until the next
> revision makes them all obsolete. Looking at you, 802.11n.

There's a balance to strike here. Early adoption at nontrivial scale 
provides valuable feedback and has thus emerged as a critical part of 
the collaborative process employed by the IETF. Of course, this doesn't 
mean we should treat drafts as finalized standards.

In the end, this isn't relevant to TLS 1.3 because TLS 1.3 has been 
finalized for over three years. Certain optional extensions aren't 
finalized, though; they make for a separate discussion.

-- 
/Seirdy
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 898 bytes
Desc: not available
URL: <https://lists.orbitalfox.eu/archives/gemini/attachments/20211107/68bf0667/attachment.sig>

Previous message (by thread): Request for feedback from server/client implementers using\n non-OpenSSL TLS stacks
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Gemini mailing list