david wong

Hey ! I'm David, a security consultant at Cryptography Services, the crypto team of NCC Group . This is my blog about cryptography and security and other related topics that I find interesting.

Keeping up with TLS 1.3 4 weeks ago


Ekr kick started the TLS:DIV workshop last Sunday. "The number of changes since draft 13 is too damn high" read one of the slide. Not wrong I said to myself. I did read draft 18 in its entirety when we had to review Cloudflare's TLS 1.3 implementation, and I tried to keep up with the changes ever since but I can honestly say that I completely failed.

So I thought, why not creating a nice diff that would allow me to go through all these changes just by reading the spec one more time. With the magic of git diff --color-words --word-diff=porcelain -U1000000 and some python I created a nice spec that shows up differences between draft 18 and the latest commit on the github spec.


You can find it here

If you want the same thing for a different draft version say something in the comment section!

Well done! You've reached the end of my post. Now you can leave me a comment :)


Your version is a bit nicer, but if you aren't aware, the IETF can generate diffs between drafts automatically as well: https://datatracker.ietf.org/doc/draft-ietf-tls-tls13/history/


Oh really nice! This is actually all I wanted: https://www.ietf.org/rfcdiff?url1=draft-ietf-tls-tls13-18&url2=draft-ietf-tls-tls13-20&difftype=--hwdiff