Sure https://github.com/tlswg/tls13-spec/pull/1210
John From: Eric Rescorla <[email protected]> Date: Wednesday, 10 February 2021 at 18:18 To: "Salz, Rich" <[email protected]> Cc: "[email protected]" <[email protected]>, John Mattsson <[email protected]>, "[email protected]" <[email protected]> Subject: Re: [TLS] draft-ietf-tls-rfc8446bis - Security propterites - Protection of endpoint identities Agreed. With that said, I don't think it would hurt to add some text. John, would you like to provide a PR? -Ekr On Wed, Feb 10, 2021 at 8:11 AM Salz, Rich <[email protected]<mailto:[email protected]>> wrote: · Previous versions of TLS explicitly offered a null cipher (wherein encryption consists of the identity operation, i.e., the data is not encrypted). These modes have been deprecated in TLS 1.3. These modes have been *removed* in TLS 1.3 Further, the only ciphers in the RFC provide authenticated encryption. I think anything that doesn’t provide that is going to get an “N” in the recommended column FWIW. I’m one of three experts for that registry. /r$ _______________________________________________ TLS mailing list [email protected]<mailto:[email protected]> https://www.ietf.org/mailman/listinfo/tls
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
