> On 15 Nov 2014, at 14:51, Hannes Tschofenig <[email protected]> wrote: > > Here is a suggestion: > > Title: "Recommendations for Secure Use of TLS in the Web" > > Abstract: > > Transport Layer Security (TLS) is widely used to protect data exchanged > over application protocols such as HTTP, SMTP, IMAP, POP, SIP, and XMPP. > Over the last few years, several serious attacks on TLS have emerged, > including attacks on its most commonly used cipher suites and modes of > operation. This document provides recommendations for improving the > security of deployed services that use TLS. The recommendations are > applicable to the majority of use cases. > Recommendations for other environments, such as Internet of Things, XMPP > and Email, can be found in other specifications.
Actually, I disagree. The intent of this document is to also apply to email and XMPP. >> On 11/14/2014 09:37 PM, Leif Johansson wrote: >>> On 2014-11-14 20:57, Hannes Tschofenig wrote: >>> I have a small request for "Recommendations for Secure Use of TLS >>> and DTLS" <draft-ietf-uta-tls-bcp-07>: Could you please change the >>> scope of the document so that it does not collide with the work we >>> do in DICE. >> >>> Your recommendations, as stated in the abstract, focus on the >>> Web/messaging/email space rather than the Internet of Things >>> space. >> >> >> Hannes, >> >> The document is in its second WGLC. If you want to suggest changes, >> please provide concrete text. >> >> Cheers Leif >> >> >> _______________________________________________ >> Uta mailing list >> [email protected] >> https://www.ietf.org/mailman/listinfo/uta > > _______________________________________________ > Uta mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/uta _______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
