Hi, I've enjoyed reading RFC 7525. Thanks for your work.
Section 4.1 says that cipher suites with static RSA (TLS_RSA_WITH_*) should not be used because they do not support forward secrecy. Is there a specific reason why static DH (TLS_DH_*) is not mentioned? Regards, Matt
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
