Revision history  [back]

If the device is using a DH key exchange then perfect forward secrecy will prevent decryption even with the private key.

You might be able to perform a MITM either by forcing an algorithm down-grade or by getting the root certificate of the MITM device accepted by the IoT device as a trusted root as is done by many "TSL inspecting" security appliances.