Rob Sayre <[email protected]> writes:
>For my part, I'm sick of "IoT" or "SCADA" or "embedded" vendors just
>endlessly keeping old cipher suites alive. The unwise cost-cutting in those
>areas does not constrain the rest of the internet.
And for my part I'm... well not really sick of but resigned to accepting the
fact that as far as the WG seems to be concerned, nothing exists outside of
the web [*] and there's no need to accommodate anything but that. Saying
"lalalalala I'm not listening, I'm not listening" won't deal with the fact
that there's a staggering amount of gear out there with product lifecycles
sometimes measured in decades that needs a sound basis for making decisions
about what to deploy, which this deprecation isn't providing.
Maybe that's the way to resolve this, make it explicit that the deprecation
applies for web use and not for other uses like SCADA, embedded, or anything
else that needs to take long-term usage into account.
Peter.
[*] Once you exclude your list of IoT, SCADA, embedded, and the case I
mentioned, transaction processing, you've pretty much ruled out
everything but web use... well OK, admittedly there's still email (so
opportunistic encryption) and a bunch of barely-visible stuff like any
tunnels that for some reason don't already use IPsec/OpenVPN/WireGuard.
_______________________________________________
TLS mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/tls
