Eric Rescorla wrote this message on Sun, Aug 02, 2015 at 11:52 -0700:
> things so it's not obvious to others. In any case, what you'd want is
> something
> like:
>
> - ECDH_anon with P256 and Curve25519
> - AES_128_GCM; AES_256_GCM; ChaCha/Poly1305
> - SHA256 for the PRF
> - Session hash
> - No renegotiation [Banned in TLS 1.3]
> - No compression [Banned in TLS 1.3]
> - RFC5705 tickets [or PSK in 1.3]
Is this what you are proposing for the profile? or is this just, oh
one profile might be the above, but I'm not proposing anything?
I want to be clear before we start discussing this as a proposal, since
the language above doesn't sound like one to me...
--
John-Mark Gurney Voice: +1 415 225 5579
"All that I will do, has been done, All that I have, has not."
_______________________________________________
Tcpinc mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/tcpinc
