[openssl-users] Query regarding upgrading TLS compatibility

[Kyle Hamilton]

Every new version of TLS requires code to be written.  Sometimes it can be
implemented in a binary compatible manner, and in those situations you can
get the implementation of a new TLS version by simply replacing a DLL or
equivalent dynamic library.  However, it's much more likely that the
implementation requires non-binary-compatible changes, and your application
will need to be recompiled against the new version of the library that
supports the newest TLS version.

In other words, it is very unlikely that TLS 1.3 can be implemented in a
binary-compatible manner.  It is best if you plan to recompile your
application against the version of the library that implements TLS 1.3.

-Kyle H

On Mon, Apr 3, 2017 at 2:42 AM, Hegde, Harsha <Harsha.Hegde at nttdata.com>
wrote:

> Hi,
>
> I have an query regarding TLS compatibility used in my application.
> Currently we are using TLS1.2 to connect to a third party sever. Is there
> any way to always use the highest TLS available version without modifying
> or recompiling the application code whenever there is any new version of
> TLS released.
>
>
>
>
>
> Thanks & Regards
>
> Harsha
>
> ______________________________________________________________________
> Disclaimer: This email and any attachments are sent in strictest confidence
> for the sole use of the addressee and may contain legally privileged,
> confidential, and proprietary data. If you are not the intended recipient,
> please advise the sender by replying promptly to this email and then delete
> and destroy this email and any attachments without any further use, copying
> or forwarding.
>
> --
> openssl-users mailing list
> To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20170403/a1a10fdc/attachment.html>