John Mattsson <[email protected]> writes: >Looking at the IANA TLS registry, I am surprised to see that psk_dhe_ke and >especially psk_ke are both marked as RECOMMENDED. If used in the initial >handshake, both modes have severe privacy problems,
PSK is used a fair bit in SCADA. There are no privacy problems there. So just because there's a concern for one specific environment doesn't mean it should be banned for any use. In particular, I think if a specific industry has a particular concern, they should profile it for use in that industry but not require that everyone else change their behaviour. Peter. _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
