[TLS] Deprecating Obsolete Key Exchange Methods in TLS

2022-03-02 Thread Nimrod Aviram
Hi Everyone, Following the discussions around draft-bartle-tls-deprecate-ffdh and draft-aviram-tls-deprecate-obsolete-kex, and after consulting the chairs, we have merged the two drafts into draft-aviram-tls-deprecate-obsolete-kex

Re: [TLS] Deprecating Obsolete Key Exchange Methods in TLS

2022-03-02 Thread Blumenthal, Uri - 0553 - MITLL
Following the discussions around draft-bartle-tls-deprecate-ffdh and draft-aviram-tls-deprecate-obsolete-kex, and after consulting the chairs, we have merged the two drafts into draft-aviram-tls-deprecate-obsolete-kex. The merged draft prescribes the following: RSA key exchange is a MUST NOT

Re: [TLS] Deprecating Obsolete Key Exchange Methods in TLS

2022-03-02 Thread David Benjamin
On Wed, Mar 2, 2022 at 12:19 PM Blumenthal, Uri - 0553 - MITLL < u...@ll.mit.edu> wrote: > Following the discussions around draft-bartle-tls-deprecate-ffdh and > draft-aviram-tls-deprecate-obsolete-kex, and after consulting the chairs, > we have merged the two drafts into draft-aviram-tls-deprecat

Re: [TLS] Deprecating Obsolete Key Exchange Methods in TLS

2022-03-02 Thread Salz, Rich
Nice editing. We can argueX rationally discuss the various choices the draft makes once it’s adopted. And welcome Carrick and Nimrod as new authors! ___ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls

Re: [TLS] Deprecating Obsolete Key Exchange Methods in TLS

2022-03-03 Thread Carrick Bartle
> NIST PQC API is Key Encapsulation – conceptually similar to RSA key exchange. > > > Yes, but this has no bearing on why it's deprecated. +1. The PQ KEMs aren't relevant here. > On Mar 2, 2022, at 10:31 AM, David Benjamin wrote: > > On Wed, Mar 2, 2022 at 12:19 PM Blumenthal, Uri - 0553 -