I support the *contents* of this document. The title, however, I can't agree to. So I want to be clear about the scope of the work, namely deprecating semi-static FFDH and ECDH suites and any use of FFDHE ephemeral suites with reused keys.
The draft limits the ban on ephemeral key reuse to FFDHE, which is right; I could tolerate a prohibition on reuse for ECDH, but I know that we rely on that for HPKE and other things, so it can't really be bad enough to ban. Cheers, Martin On Fri, Jul 30, 2021, at 07:50, Joseph Salowey wrote: > This is a working group call for adoption for Deprecating FFDH(E) > Ciphersuites in TLS (draft-bartle-tls-deprecate-ffdhe-00 > <https://datatracker.ietf.org/doc/draft-bartle-tls-deprecate-ffdhe/>). > We had a presentation for this draft at the IETF 110 meeting and since > it is a similar topic to the key exchange deprecation draft the chairs > want to get a sense if the working group wants to adopt this draft > (perhaps the drafts could be merged if both move forward). Please > review the draft and post your comments to the list by Friday, August > 13, 2021. > > Thanks, > > The TLS chairs > _______________________________________________ > TLS mailing list > TLS@ietf.org > https://www.ietf.org/mailman/listinfo/tls > _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
