But the draft states
   Values within "obsolete_RESERVED" ranges are used in previous
   versions of TLS and MUST NOT be offered or negotiated by TLS 1..3

TLS 1.3 does not define use of the Brainpool curves.  Any implementation that 
wants to use them in TLS 1.3 is already out-of-scope of the standard, and is 
therefore not required to follow MUST etc.

The intent of the WG was to not allow some things, and changing away from MUST 
violates that intent.

A separate RFC proposal adding Brainpool to TLS 1.3 is the way to go, and the 
only way to go.

For now, use TLS 1.2
_______________________________________________
TLS mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/tls

Reply via email to