Hi IIari, >From all of the RFCs about suite B that I have read, DSA has never been a part >of it.
RSA can be used for signatures and key wrap/transport. Quynh. ________________________________________ From: TLS <[email protected]> on behalf of Ilari Liusvaara <[email protected]> Sent: Wednesday, September 2, 2015 1:49 PM To: Salz, Rich Cc: [email protected] Subject: Re: [TLS] DSA support in TLS 1.3. On Tue, Sep 01, 2015 at 05:58:33PM +0000, Salz, Rich wrote: > There is a third option: you don't get to use TLS 1.3 until the > government requirements are updated. > > I'm fine with that. I think they already have, with NSA seemingly saying RSA3k is OK for up to TOP SECRET (unless I misunderstood). The same table from NSA that mentions RSA (and the 3k limit) does not mention DSA (the only other signature algo is ECDSA with 384 limit). So maybe even US govt. is not using DSA? -Ilari _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
