On Thu, Jul 20, 2023 at 12:50:39PM -0400, Michael Richardson wrote: > > Orie Steele <[email protected]> wrote: > > It needs to express an HPKE suite, which is a combination of details > > which become irrelevant once named properly. > > Those names could be allowed to be more abstract. > > > It's not that these details don't matter, it's that the average > > developer doesn't need to know them to use HPKE. > > +1 > Effectively both IPsec and TLS have ciphersuites. We tried the other way, > and it just was a bad idea. (In IKEv2, we still express things with many > parameters, but we effectively have "UI" ciphersuites)
TLS 1.3 dramatically scaled ciphersuites back, and for very good reasons. The old system would have been totally unworkable. It was already a pain in TLS 1.2 (not playing nicely with the rest). -Ilari _______________________________________________ COSE mailing list [email protected] https://www.ietf.org/mailman/listinfo/cose
