On Thu, 14 Jul 2022, Rob Sayre wrote:
cover the maximal-compatibility concerns for 1.2, but recommend 1.3 and don't require 1.2.
If someone wrote a new app implementation and follows this advise by only implementing TLS 1.3, how well would it interoperate with existing apps/servers it needs to talk to? I feel this would not go well. The text could say something along the lines of "SHOULD implement TLS 1.2 unless it is known that for its application TLS 1.3 is widely available, or is a Green Field deployment where all parties are known to support TLS 1.3". Paul -- last-call mailing list last-call@xxxxxxxx https://www.ietf.org/mailman/listinfo/last-call
