The Transport Layer Security (TLS) Protocol Version 1.3
Embed This Widget
Add the script tag and a data attribute to embed this widget.
Embed via iframe for maximum compatibility.
<iframe src="https://ipfyi.com/iframe/entity//" width="420" height="400" frameborder="0" style="border:0;border-radius:10px;max-width:100%" loading="lazy"></iframe>Paste this URL in WordPress, Medium, or any oEmbed-compatible platform.
https://ipfyi.com/entity//Add a dynamic SVG badge to your README or docs.
[](https://ipfyi.com/entity//)Use the native HTML custom element.
E. Rescorla · 2018-08
Abstract
This document specifies version 1.3 of the Transport Layer Security (TLS) protocol. TLS allows client/server applications to communicate over the Internet in a way that is designed to prevent eavesdropping, tampering, and message forgery. This document updates RFCs 5705 and 6066, and obsoletes RFCs 5077, 5246, and 6961.
Why This RFC Matters
RFC 8446 represents the most significant redesign of TLS in the protocol's history, reducing the full handshake to one round trip (and zero round trips for session resumption with 0-RTT), eliminating all cipher suites without forward secrecy, removing RSA key exchange, retiring RC4/3DES/SHA-1, and encrypting the server certificate to prevent passive observer enumeration of server identities. TLS 1.3 adoption accelerated rapidly after publication and is now the preferred version for virtually all new HTTPS deployments; browsers and CDNs have deprecated TLS 1.0/1.1 in compliance with CA/B Forum and IETF recommendations, making TLS 1.2 and 1.3 the only practically deployed versions.