Presented at SuriCon 2018 by Pierre Chifflier, ANSSI
After more than 8 years since the last protocol update, TLS is about to receive a new update: TLS 1.3. Much more than a minor update, this new version aims at improving security and speed of encrypted connections, like HTTP/2. This talk gives an overview of the changes: what are the differences in the protocol messages and state machine (especially 0-RTT), and the changes in cryptographic parameters. Then, it gives a deeper look at how this changes affect detection systems, like parts of the protocol being now encrypted (certificate, and some extensions), the added/removed metadata, and the co-existence of parsers for earlier versions.