Hi, This survey of TLS in 1 million web servers shows that 93% support 3DES - oof!
https://jve.linuxwall.info/blog/index.php?post/TLS_Survey 3DES hasn't quite disappeared on the Internet. Cheers, - Ira Ira McDonald (Musician / Software Architect) Co-Chair - TCG Trusted Mobility Solutions WG Chair - Linux Foundation Open Printing WG Secretary - IEEE-ISTO Printer Working Group Co-Chair - IEEE-ISTO PWG Internet Printing Protocol WG IETF Designated Expert - IPP & Printer MIB Blue Roof Music / High North Inc http://sites.google.com/site/blueroofmusic http://sites.google.com/site/highnorthinc mailto: [email protected] Jan-April: 579 Park Place Saline, MI 48176 734-944-0094 May-Dec: PO Box 221 Grand Marais, MI 49839 906-494-2434 On Thu, Aug 25, 2016 at 9:33 AM, Eric Rescorla <[email protected]> wrote: > > > On Thu, Aug 25, 2016 at 6:21 AM, david wong <[email protected]> > wrote: > >> I don't think a RFC deprecating them is a good idea: >> >> * TLS 1.3 is almost here and is already doing that >> * what browser still use 64-bit ciphers? Who lets his "old" browser open >> for 75 hours? >> > > Actually, I believe that all the major browsers support 3DES. > > -Ekr > > * in other uses of TLS. It's not always obvious if there is a possible >> beast style attacks. And their implementation might really well not be >> vulnerable (due to limiting number of messages according to specs) >> >> David >> _______________________________________________ >> Cfrg mailing list >> [email protected] >> https://www.irtf.org/mailman/listinfo/cfrg >> > > > _______________________________________________ > Cfrg mailing list > [email protected] > https://www.irtf.org/mailman/listinfo/cfrg > >
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
