I think I understand why man-in-the-middle proxies cannot disengage from #TLS 1.3 sessions because the protocol uses Diffie-Hellman for session key exchange. But isn't DH available on TLS 1.2 as well? Maybe the proxies avoid it exactly because of that? 🤔 #cryptography

https://tools.ietf.org/html/draft-camwinget-tls-use-cases-05