Predicting the future is hard. Does anyone have a crystal ball that says this MUST be done within, say, three years?
We can look at the PCI DSS timeline for previous revs - there's no guarantee it would be the same, of course. And there are other relevant regulators, as well. Perhaps someeone from a regulated industry who's on this list can give us some insight? For example, are any vendors committing to do this? Vendors will do it if their customers/prospects require it. But many vendors insist on either Standards-track or WG-Informational (*not* Independent Stream) before they will commit. ----------------------------------- Roland Dobbins <rdobb...@arbor.net<mailto:rdobb...@arbor.net>>
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls