Explore the significant changes in the TLS 1.3 handshake compared to previous versions in this 18-minute video. Dive into four major modifications: the shorter one round trip (1RTT) handshake, increased encryption of handshake components, encryption of client certificates in mutual TLS, and the generation of additional session keys. Learn about zero round trip (0RTT) handshakes, Encrypted Server Name Indication (ESNI), and Encrypted Client Hello (ECH). Gain insights into the enhanced security features of TLS 1.3 and understand how these changes impact network communications and cybersecurity practices.
Overview
Syllabus
- Review of TLS 1.2 and prior TLS Handshake
- Comparing TLS 1.3 Handshake and TLS 1.2 Handshake
- TLS 1.3 One Round Trip Handshake 1RTT simply explained
- TLS 1.3 0RTT - Zero Round Trip Handshake
- TLS 1.3 encrypts most of the TLS Handshake
- ESNI, Encrypted SNI, Encrypted Server Name Indication
- ECH, Encrypted Client Hello
- TLS 1.3 encrypts the Client Certificate in Mutual TLS MTLS
- TLS 1.3 generates many more session keys
- Key Points - TLS 1.3 Changes to the TLS Handshake
- Want more? Check out Practical TLS - the *BEST* TLS training course ever created
Taught by
Practical Networking
