Hi, > I am just a little bit worried that everything developed for the IoT > enviroment is quite likely labled as not recommended by the IETF in this > registry because of the Web focus in this group. > RFC 5246 speaks of "Application Profiles" and it seems like this discussion that started to simplify the WG load is now getting mixed with that idea:
In the absence of an application profile standard specifying otherwise, a TLS-compliant application MUST implement the cipher suite TLS_RSA_WITH_AES_128_CBC_SHA (see Appendix A.5 for the definition). The worry about IoT above makes me suspect there might be a use for an IoT application profile, presumably geared towards simplicity and compactness. Such a profile could make its own choices, possibly as a subset from the Y markers and possibly enhanced with industry-driven desires. -Rick _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
