[email protected] <[email protected]> writes: >IMHO the problem with deprecation is not in the IETF but rather with the >deployments. > >PS: As Kathleen noted TLS 1.2 and DTLS 1.2 are perfectly fine if you follow >RFC 7925/7525.
Maybe the text could be updated to have one section of text for the web and one for everything else, since they're totally, totally different environments. I was at a meeting last week to discuss upgrade mechanisms for some globally deployed infrastructure and they were looking at a 2-3 year time window to start the upgrade process, with completion by 2030 at the latest. That's not a typo for 2020, it's 2030. So the text needs to acknowledge the two different operating environments, the web where you can replace anything you want at a drop of a hat, and the rest of the world where it takes serious effort to make the change. Moving from TLS 1.0 to TLS 1.2 with EMS/EtM/LTS within ten years, for the non-web world, is a practical goal. Moving to an entirely new protocol in that time frame (TLS 1.3) probably isn't going to happen. Peter. _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
