TLS protocol plays a critical role in ensuring the privacy, integrity, and reliability of network communications. In recent years, both industry and academia have actively promoted research and development related to TLS protocol, achieving significant progress, particularly in TLS 1.3. However, with the increasing complexity of network environments and the continuous evolution of attack methods, the security of the TLS 1.3 protocol also faces severe challenges, including replay attacks, risks to forward secrecy and vulnerabilities in software implementations such as OpenSSL. These attacks and vulnerabilities not only pose serious threats to user privacy and enterprise data security but also profoundly impact the trust system of the Internet and the broader digital economy. This study first provides a detailed introduction to the development and underlying principles of TLS 1.3. Subsequently, recent security research on the TLS 1.3 protocol is systematically categorized, compared, and analyzed from three aspects: protocol mechanism, software implementation, and application configuration. Finally, the current state and challenges in the TLS 1.3 protocol security research are summarized, and suggestions for future research directions are provided.