Looks like 0-RTT in TLS1.3 comes with a quite high price: Vulnerability to replay attacks.

If you are one of the early adopter, check that your application is not affected as this is a fundamental problem on protocol level.

"What Application Developers Need To Know About TLS Early Data (0RTT)" by Paul Kehrer:

Sign in to participate in the conversation
Sheogorath's Microblog

This instance is the microblog to my blog. You'll probably find more recent content here while finding more elaborated content on the blog. Impressum / Datenschutz / Privacy