Hi, I am happy to report that 3GPP just took the decision that nodes supporting EAP-TLS shall support EAP-TLS with TLS 1.3. The changes apply to all 3GPP Rel-16 nodes. [1]
The 3GPP profiling for TLS in EAP-TLS now follows the general 3GPP TLS profiling, which mandates support of TLS 1.3, forbids support of TLS 1.1, MD5, SHA-1, non-AEAD, non-PFS, and mandates minimum key lengths of 2048 for RSA/FFDH and 255 for ECC. Cheers, John [1] http://www.3gpp.org/ftp/TSG_SA/WG3_Security/TSGS3_98e/Docs/S3-200318.zip _______________________________________________ Emu mailing list Emu@ietf.org https://www.ietf.org/mailman/listinfo/emu