> On 16 Mar 2017, at 17:17, Eric Rescorla <e...@rtfm.com> wrote: > > Hi folks > > I note that we are proposing to uplift RFC 5289 to PS, despite the fact that > it > standardizes some CBC cipher suites, which the WG is looking to move away > from. I recognize that these are the only cipher suites you can use in TLS 1.0 > and 1.1, but we also want people to move away from them. > > This problem is probably solvable by marking the registry as Not Recommended, > but I wondered if anyone had other thoughts on this topic? >
5289 applies to TLS 1.0, 1.1, and 1.2. It seems strange to uplift a bunch of ciphersuites for 1.2 just as we’re publishing TLS 1.3 which obsoletes 5246. Yoav
signature.asc
Description: Message signed with OpenPGP
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls