Hi Manoj,

 

As you might have seen, TLS1.3 prototype is available in github

https://github.com/hannestschofenig/mbedtls/tree/tls13-prototype

The project is working on reviewing the prototype and upstreaming parts of it to Mbed TLS.

The currently open pull requests to Mbed TLS project can be found here: https://github.com/ARMmbed/mbedtls/labels/MPS%20%2F%20TLS%201.3
Some of the outstanding work is captured here - https://github.com/ARMmbed/mbedtls/projects/2#column-12964476

 

If possible, please test the TLS1.3 prototype and let know if you have any feedback. Also welcome to review any patches.

1. Expected date for release of MbedTLS with TLS 1.3 support?

A subset of TLS 1.3 features is aimed to be available around the last quarter of 2021. TLS1.3 support in Mbed TLS at that point would be limited for TLS (no DTLS), Client side and ECDHE.

There won’t be support for server side, PSK and 0-RTT in this initial version. Note the last quarter target is based on high level task estimations and can change based on progress made in the coming months.

 

You can use the prototype above in the interim for prototyping/development purposes. It is not expected to be integrated on production platforms though.

 

2. Is MbedTLS with TLS 1.3 support available under paid subscription?

No, there is no paid offerings in Mbed TLS project.

Mbed TLS project is an open source community project under trustedfirmware.org (https://www.trustedfirmware.org/) and is available to use under the open source license (Refer license section - https://github.com/ARMmbed/mbedtls).  

 

3. Process for paid subscription (if point #2 applicable)

Not Applicable

 

Regards,

Shebu