Hi, TLS 1.3 has several stated security properties. One of them is "Protection of endpoint identities". EAP-TLS 1.3 (up until version -13) was written with the assumption that this property holds. Other uses of TLS 1.3 might also rely on the property to hold. With draft-camwinget-tls-ts13-macciphersuites, the "Protection of endpoint identities" does no longer hold in general. I think RFC8446bis needs to state that this property only holds for cipher suites with confidentiality.
Cheers, John _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
