Last Call Review of draft-ietf-tls-tls13-24

Request Review of draft-ietf-tls-tls13
Requested rev. no specific revision (document currently at 28)
Type Last Call Review
Team Security Area Directorate (secdir)
Deadline 2018-03-01
Requested 2018-02-15
Authors Eric Rescorla
Draft last updated 2018-02-16
Completed reviews Secdir Last Call review of -24 by Rich Salz (diff)
Genart Last Call review of -24 by Dale Worley (diff)
Assignment Reviewer Rich Salz 
State Completed
Review review-ietf-tls-tls13-24-secdir-lc-salz-2018-02-16
Reviewed rev. 24 (document currently at 28)
Review result Ready
Review completed: 2018-02-16


I have discovered an elegant little proof that shows TLS 1.3 is not secure, unfortunately I do not have the room to fit it in this textbox.  I will send email tomorrow...

No, seriously, this protocol has been designed with the help of world-class cryptographers and academics. It has been analyzed with verification tools.  It has been tweaked as necessary to get around middlebox ossification. It is available in two highly popular browsers and at least one widely-used open source toolkit.

This document is READY.