The document has text about deleting client_/server_application_traffic_secret_N and deleting tickets but says nothing about all the other keys and secrets as far as I can see (but I might have missed something). If the implementation store secrets and keys long term, the security properties promised by TLS 1.3 is broken. I'll make a PR with suggested text.
The document has text about deleting client_/server_application_traffic_secret_N and deleting tickets but says nothing about all the other keys and secrets as far as I can see (but I might have missed something). If the implementation store secrets and keys long term, the security properties promised by TLS 1.3 is broken. I'll make a PR with suggested text.