Hi, Please respond if breaking ECDHE_ECDSA backwards compatibility between the upcoming core 16.04 release and 15.04/15.09 would cause an issue for your projects or products.
The core working group is evaluating the need for core 16.04 to provide backwards compatibility support for the ECDHE_ECDSA authentication method that was added in the 15.04 core release. One input to this evaluation is an assessment of the community's use of and reliance upon ECDHE_ECDSA as supported in these releases. We are not aware of the use of ECHDE_ECDSA today as service frameworks that we are familiar with are using ECHDE_PSK for authentication. Background: The ECDHE_ECDSA authentication introduced in core 15.04 only supports authentication. When Security 2 is released as a feature, ECDHE_ECDSA will add authorization. Peers using the earlier implementations of ECDHE_ECDSA will not be able to support the authorization functionality thus all interactions will be blocked by the newer peer. The core working group does have a proposal on how this interoperability can be addressed but are questioning if the effort is justified or if a workaround for a few isolated cases is sufficient. Ken Swinson Qualcomm Connected Experiences, Inc.
_______________________________________________ Allseen-core mailing list [email protected] https://lists.allseenalliance.org/mailman/listinfo/allseen-core
