On Tuesday, July 04, 2017 07:21:44 am Ilari Liusvaara wrote: > However, this requires > TLS 1.2 or newer, but that should not be a problem. > > - The proposed ciphersuites are really bad.
Just as a clarification, all new RFCs should ideally meet all of the following criteria: * AEAD only * PFS only * TLS 1.2 and 1.3 support * no TLS 1.0 or 1.1 support (let alone SSL) * no use of broken hashes (MD5, SHA1, etc.) Dave _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
