On Thu, Feb 2, 2017 at 11:37 AM, <[email protected]> wrote: > BTW, it seems to me that Firefox should be using a more widely used ECDH > named curve, such as secp256r1, when the Client Hello does not list the > supported named curves. This would make Firefox more compatible with older > implementations. I suppose security and speed may be factor here, but isn't > it a bit too soon to make this change?
This is in fact how Firefox will operate in future. The error, that exists in Firefox 51 (and maybe 52) is that we assume support for all of the groups that are enabled on the server. That will not be the case soon, we will only assume support of P-256. See https://bugzilla.mozilla.org/show_bug.cgi?id=1330612 _______________________________________________ dev-media mailing list [email protected] https://lists.mozilla.org/listinfo/dev-media
