Constant s2n_tls::security::DEFAULT_TLS13

pub const DEFAULT_TLS13: Policy;

Default policy supporting TLS1.3

Warning

Cipher suites, curves, signature algorithms, or other security policy options may be added or removed from “default_tls13” in order to keep it up to date with current security best practices.

That means that updating the library may cause the policy to change. If peers are expected to be reasonably modern and support standard options, then this should not be a problem. But if peers rely on a deprecated option that is removed, they may be unable to connect.

If you instead need a static, versioned policy, choose one according to the s2n-tls usage guide: https://aws.github.io/s2n-tls/usage-guide/ch06-security-policies.html