While working on rfc7525bis [1], we've been pondering [2] whether to
recommend the "supported_versions" extension for TLS 1.2 (not TLS 1.3)
implementations. RFC 8446 states:
- The "supported_versions" ClientHello extension can be used to
negotiate the version of TLS to use, in preference to the
legacy_version field of the ClientHello.
By our reading, it doesn't make any difference to a TLS 1.2
implementation whether it sends or receives the "supported_versions"
extension. Corrections welcome, of course! If this is the case, we'd
prefer not to recommend that TLS 1.2 implementations specifically add
support for this extension, since upgrading to TLS 1.3 is best anyway.
Thanks,
Peter, Thomas, Yaron
[1] https://datatracker.ietf.org/doc/draft-ietf-uta-rfc7525bis/
[2] https://github.com/yaronf/I-D/issues/253
_______________________________________________
TLS mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/tls
