When will EDF FTP.NET Support Session resumption for TLS1.3

Question

Customers are getting more and more FTPS Servers enforcing TLS 1.3.

They also REQUIRE session resumption, as a potential vulnerability exists when having to re-negotiate the data tunnel (there is no guarantee that is it the same client creating the data channel if it is not re-using/resuming the parameters from the already negotiated control- channel)

So, when will EDF FTP.NET Support Session resumption for TLS1.3

Answer 1

We currently have two priorities - implementing aes256-gcm@openssh.com for SSH, and implementing session resumption for TLS 1.3. We expect both to do completed by end of July 2025 (estimate!).