Hi Manoj,

 

As you might have seen, TLS1.3 prototype is available in github

https://github.com/hannestschofenig/mbedtls/tree/tls13-prototype

The project is working on reviewing the prototype and upstreaming parts of it to Mbed TLS.

The currently open pull requests to Mbed TLS project can be found here: https://github.com/ARMmbed/mbedtls/labels/MPS%20%2F%20TLS%201.3
Some of the outstanding work is captured here - https://github.com/ARMmbed/mbedtls/projects/2#column-12964476

 

If possible, please test the TLS1.3 prototype and let know if you have any feedback. Also welcome to review any patches.

  1. Expected date for release of MbedTLS with TLS 1.3 support?

A subset of TLS 1.3 features is aimed to be available around the last quarter of 2021. TLS1.3 support in Mbed TLS at that point would be limited for TLS (no DTLS), Client side and ECDHE.

There won’t be support for server side, PSK and 0-RTT in this initial version. Note the last quarter target is based on high level task estimations and can change based on progress made in the coming months.

 

You can use the prototype above in the interim for prototyping/development purposes. It is not expected to be integrated on production platforms though.

 

  1. Is MbedTLS with TLS 1.3 support available under paid subscription?

No, there is no paid offerings in Mbed TLS project.

Mbed TLS project is an open source community project under trustedfirmware.org (https://www.trustedfirmware.org/) and is available to use under the open source license (Refer license section - https://github.com/ARMmbed/mbedtls).  

 

  1. Process for paid subscription (if point #2 applicable)

Not Applicable

 

Regards,

Shebu

 

 

From: mbed-tls <mbed-tls-bounces@lists.trustedfirmware.org> On Behalf Of Manoj Srivastava via mbed-tls
Sent: Monday, May 17, 2021 8:57 PM
To: mbed-tls@lists.trustedfirmware.org
Subject: [mbed-tls] Query for TLS 1.3

 

Hello,

 

I am using mbedTLS for TLS support. I am looking for TLS 1.3 support for PSK only mode.  I have checked source code online but didn't get TLS 1.3 PSK only code. I found all prototype code only. Can you please highlight the repository if the same is available ?

 

In case fixed code for TLS 1.3 for PSK only mode is not available then can please answer followings:

 

  1. Expected date for release of MbedTLS with TLS 1.3 support?
  2. Is MbedTLS with TLS 1.3 support available under paid subscription?
  3. Process for paid subscription (if point #2 applicable)

Best Regards,

Manoj Srivastava