Hello Tony, So essentially TLS 1.3 drops support for DH/DHE ciphers on RSA keys, but willl otherwise work as expected?
Ben ________________________________ From: Tony Arcieri <[email protected]> Sent: Monday, June 18, 2018 11:36 To: Ben Personick Cc: <[email protected]> Subject: Re: [TLS] Mail regarding draft-ietf-tls-tls13 On Mon, Jun 18, 2018 at 6:30 AM Ben Personick <[email protected]<mailto:[email protected]>> wrote: There is a common thread circulating, that all support for RSA Certificates/Ciphers are dropped in TLS 1.3. RSA certificates will continue to work in TLS 1.3+. What will not be supported in TLS 1.3+ is RSA key transport / key encipherment (which lacks forward secrecy, among other problems). However, this is a property of how the protocol does key exchange / key agreement and has nothing to do with certificates. -- Tony Arcieri
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
