TLS 1.3

The 2018 redesign of TLS with faster handshakes (1-RTT, 0-RTT), AEAD-only ciphers, and mandatory forward secrecy.

TLS 1.3 (RFC 8446) is a major redesign of the protocol published in 2018. The handshake completes in one round trip (and supports 0-RTT resumption for repeat connections), all key exchanges are forward-secret, only AEAD ciphers are allowed, and a long list of legacy features (RSA key transport, static DH, custom DHE groups, compression, SHA-1 signatures, renegotiation) was removed. Cipher suite names no longer encode the key exchange or signature algorithm (those are negotiated separately). TLS 1.3 plus ECH is the modern privacy-preserving baseline.

Reference

RFC 8446

Related terms

TLS 1.2
Cipher Suite
Forward Secrecy
ECH (Encrypted Client Hello)
TLS Handshake

Referenced on

HTTP Header Checker
SHA-512 Generator
SMTP Diagnostics
SSL/TLS Error Codes Reference and Fixes

Back to the full glossary