Dear Sirs at the IETF, (My apology for the long email, I did not have time to write a shorter one) We are currently evaluating when to begin offering ECC Certificates based cypto on our websites.
Despite the advantages to doing this in TLS 1.2, there is a lot of push-back to wait until we "have to support it" once the TLS 1.3 draft is published, and the option to use it becomes available. I have read some articles saying the draft is approved, but on looking it seems not to be, I am a little unsure why the draft has been stuck in this seemingly nearly finished but not quite ready state for 3 months. Surely if there were some way I could move this project forward I would, but I am not an IETF member, so it seems my only option is to politely enquire with you and note that at least some of us are stuck using only RSA crypto until such time as this draft gets finished, and provides us with the needed emphasis to push our organizations to implement ECC cert cryptos "in preparation to support tls 1.3" as it will actually be a standard. I have been pushing for us to begin to proffer ECC certificate based crypto for some time, but until TLS 1.3 is finally accepted as a standard we will continue to see a lot of push-back here, and I suspect this is not unique to our organization, and is likely partially responsible for strangely the slow adoption on the ECDSA cipher support. Do we have any realistic Idea of when this proposal will become approved? Knowing it is happening, will give me the push I need to get us to buy an implement an ECC Certificate alongside our RSA Cert as we move forward so that we can be "ready for tls 1.3" Thanks, Ben
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
