The IETF has
The IESG has approved the following document: ‘The Transport Layer Security (TLS) Protocol Version 1.3’ (draft-ietf-tls-tls13-28.txt) as Proposed Standard
Bleeping computer has an writeup on the key features.
IETF members voted the protocol unanimously, even after members of the financial sector asked for the introduction of a backdoor in the protocol’s structure, so financial institutions could decrypt TLS 1.3 traffic inside internal networks.
The proposal was laughed off by experts, who pointed out that the backdoor would effectively make TLS 1.3 useless in the first place.
The back door request is accurate representation of lowering security. Its also true that companies such as financial institutions are required to monitor staff activity for illegal behaviour. Today they are intercepting user traffic using MITM attacks with local private key on workstations. I think it like that they will be forced to migrate to thin client or desktop agents to comply with these regulations.
Its not acceptable to weaken network security for the sake of a handful of businesses.
Link: Protocol Action: ‘The Transport Layer Security (TLS) Protocol Version 1.3’ to Proposed Standard (draft-ietf-tls-tls13–28.txt) – https://www.ietf.org/mail-archive/web/ietf-announce/current/msg17592.html
Link: IETF Approves TLS 1.3 as Internet Standard – https://www.bleepingcomputer.com/news/security/ietf-approves-tls-13-as-internet-standard/