3. High level confidentiality:
The Ephemeral mode Diffie-Hellman key exchange instead of static RSA keys ensures forward secrecy. It means that if someone at some point in the future were to get access to a server’s private key, they will not be able to crack the past conversations even if they access a conversation log.
Essentially, this ensures that any compromise of a private or long-term key today or in the future will not compromise the confidentiality of past sessions, thus ensuring the security of transaction history..
4. Enriched browsing experience:
The Zero-RTT makes it faster to connect and load web pages, do multiple transactions over the internet and in general provides a much more responsive browsing and internet experience.
5. Platform for new avenues:
TLS1.3 can be used as the Cryptographic infrastructure for exciting new protocols such as QUIC (Quick UDP Internet Connection is based on UDP often used by gaming, streaming media and VoIP services).
And there’s a bonus point! It is a lightweight protocol which makes it perfect to go on all your IOT network devices. This is achieved by reduced TLS certificate size during authentication..
For example, let us consider a connected IoT device like a wind sensor.
A wind sensor keeps on measuring the wind speed and needs to send this information to the application server.
Scenario 1: Information being conveyed by the IOT device using HTTP POST with TLS1.2