https://bugzilla.wikimedia.org/show_bug.cgi?id=53259
[email protected] changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |[email protected] --- Comment #3 from [email protected] --- Google is already supporting Forward Secrecy for SSL connections. The deployment of Forward Secrecy muss be done carefully, especialy when SSL session IDs are used. But SSL session IDs can help reduce the overhead of Forward Secrecy: https://www.imperialviolet.org/2013/06/27/botchingpfs.html http://blog.ivanristic.com/2013/06/ssl-labs-deploying-forward-secrecy.html http://blog.ivanristic.com/2013/08/configuring-apache-nginx-and-openssl-for-forward-secrecy.html http://blog.ivanristic.com/2013/08/increasing-dhe-strength-on-apache.html There have been some questions about backdoors in ECDHE ciphers: https://crypto.stackexchange.com/questions/10263/should-we-trust-the-nist-recommended-ecc-parameters -- You are receiving this mail because: You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
