Hi Jeff,

Mbed TLS 3.4 supports ECDH/FFDH/PSK for key exchange and RSA/ECDSA/PSK for authentication in TLS 1.3. I'm not sure what you mean by “generated session keys”: are you trying to do session resumption, or a handshake authenticated with an X.509 certificate?

Best regards,

--
Gilles Peskine
Mbed TLS developer


On 25/08/2023 13:55, Thompson, Jeff via mbed-tls wrote:

I’ve got mbedTLS 3.1.4 and want to use TLS 1.3. My handshake fails very early because I don’t have any Pre-Shared Keys. Does mbedTLS TLS1.3 only support PSKs, or can I still use generated session keys as does TLS 1.2? If so, how?

 

Jeff Thompson  |  Senior Electrical Engineer - Firmware
+1 704 752 6513 x1394
www.invue.com