> However, it seems that changing TLS 1.3 in slight ways that make it look more like TLS 1.2 may make it possible to bring the failure rate down to an acceptable level. How these changes look is unclear, as it hasn’t been discussed in public.<p>Or they could name and shame the makers of such devices?<p>More than anything I worry that this could lead to some weakness being discovered in 1.3 later on because they're making these compromises to cater to lazy middle-box providers.