On Sun, Nov 02, 2025 at 07:32:03PM -0500, Gorry Fairhurst wrote:
> On 02/11/2025 12:42, Joseph Salowey wrote:
> I see these changes address the issue behind my DISCUSS, I plan to clear
> this as soon as a new revision is made. Feel free to get back if I fail to
> do this.
It is of course quite late in the process, and the RFC will be published
essentially in its present state, but, FWIW, I stil believe that efforts
to deprecate FFDHE key exchange in TLS 1.2 are counter-productive. In
OpenSSL, I am shepherding a PR that adds support for RFC7919 in TLS 1.2,
with only mutually supported negotiated groups used when support for any
FFDHE groups is signalled by the client.
Once audits start flagging "issues" with servers and clients [ that
support FFDHE, I expect little security improvement to take place,
rather I expect work-arounds that are worse thatn status quo. :-(
--
Viktor. 🇺🇦 Слава Україні!
_______________________________________________
TLS mailing list -- [email protected]
To unsubscribe send an email to [email protected]
