In TLS 1.0 (RFC 2246) and therefore RFC 3920, the mandatory-to-implement
("MTI") cipher was TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA.In TLS 1.1 (RFC 4346), it was TLS_RSA_WITH_3DES_EDE_CBC_SHA. In TLS 1.2 (RFC 5246), it is TLS_RSA_WITH_AES_128_CBC_SHA. I just noticed that rfc3920bis still refers to RFC 4346 and therefore has TLS_RSA_WITH_3DES_EDE_CBC_SHA as MTI. I assume we need to change it to TLS_RSA_WITH_AES_128_CBC_SHA so that we maintain consistency with the latest version of TLS. /psa
