On 02/01/2023 13:55, Hubert Kario wrote:
On Saturday, 24 December 2022 02:10:08 CET, Rob Sayre wrote:
Maybe it would help if the chairs could clarify the difference between
"deprecated" and "prohibited" / "forbidden".
I think these words have straightforward definitions, and I find many
On 14/12/2022 04:08, Peter Gutmann wrote:
Blumenthal, Uri - 0553 - MITLL writes:
I do not support deprecation, because there will be deployed devices (IoT,
SCADA) that aren’t upgradable – and the new stuff will have to access them.
It's actually much worse than just SCADA, there are
Hubert Kario writes:
>It's also easy and quick to verify that the server *is* behaving correctly
>and thus is not exploitable.
It's also a somewhat silly issue to raise, if we're worried about a server
using deliberately broken FFDHE parameters then why aren't we worried about
the server
On Tuesday, 3 January 2023 11:33:39 CET, Peter Gutmann wrote:
Hubert Kario writes:
It's also easy and quick to verify that the server *is* behaving correctly
and thus is not exploitable.
It's also a somewhat silly issue to raise, if we're worried about a server
using deliberately broken
Hubert Kario writes:
>Because there are software stacks that allow configuration of arbitrary
>parameters for FFDH (see GnuTLS, OpenSSL), and there are software stacks that
>generate one public key share and reuse it for a long time, or allow
>configuration of this kind of behaviour (see old
Hi TLS,
This is the update to cTLS that missed the draft cutoff for our last
meeting. There are no major changes since -06 (which was presented at IETF
114 [1]), but there are a number of minor corrections, cleanups, and
clarifications. (Thanks to Ilari Liusvaara for a very detailed review of
A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Transport Layer Security WG of the IETF.
Title : Compact TLS 1.3
Authors : Eric Rescorla
Richard Barnes
Hi,
On 1/3/23 20:16, Ben Schwartz wrote:
> Hi TLS,
>
> This is the update to cTLS that missed the draft cutoff for our last
> meeting. There are no major changes since -06 (which was presented at
> IETF 114 [1]), but there are a number of minor corrections, cleanups,
> and clarifications.