SSL/TLS Protocol Design Obscurity and Complexity
6TLS protocol design is inherently obscure and complicated, making it difficult to audit and easy to introduce bugs. Issues include missing perfect forward secrecy in many TLS 1.2 ciphersuites, client-only authentication by default, and data leakage about session status and party identity.
securityTLS 1.2TLS 1.3Perfect Forward Secrecy