On Mon, Sep 3, 2018 at 4:18 AM, Hubert Kario <[email protected]> wrote:
> On Sunday, 2 September 2018 15:30:45 CEST Bruckert, Leonie wrote: > > Htmlized: > > https://tools.ietf.org/html/draft-bruckert-brainpool-for-tls13-00 > > > > Abstract: > > > > This document specifies the use of several ECC Brainpool curves for > > > > authentication and key exchange in the Transport Layer Security (TLS) > > > > protocol version 1.3. > > So I understand why you need SignatureScheme registrations, but I'm > completely > missing the need for NamedGroup registrations – are the 26, 27 and 28 > tainted > somehow? > Yes. They are explicitly prohibited by the TLS 1.3 spec. See the previous discussion on-list. -Ekr > > I also don't see the need to redefine curves from RFC 5639. > -- > Regards, > Hubert Kario > Senior Quality Engineer, QE BaseOS Security team > Web: www.cz.redhat.com > Red Hat Czech s.r.o., Purkyňova 115, 612 00 Brno, Czech Republic > _______________________________________________ > TLS mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/tls > >
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
