But the draft states Values within "obsolete_RESERVED" ranges are used in previous versions of TLS and MUST NOT be offered or negotiated by TLS 1..3
TLS 1.3 does not define use of the Brainpool curves. Any implementation that wants to use them in TLS 1.3 is already out-of-scope of the standard, and is therefore not required to follow MUST etc. The intent of the WG was to not allow some things, and changing away from MUST violates that intent. A separate RFC proposal adding Brainpool to TLS 1.3 is the way to go, and the only way to go. For now, use TLS 1.2
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
