On 7/25/21 6:44 PM, Martin Thomson wrote: > On Sat, Jul 24, 2021, at 04:32, Peter Saint-Andre wrote: >> The authors of rfc7525bis have noticed that the Commercial National >> Security Algorithm Suite (CNSA) contains some strong recommendations >> regarding topics of interest, including 3072-bit RSA, 3072-bit DHE, and >> ECDHE with secp384r1. > > I can see good reasons to move to slightly stronger constructions, but each > recommendation needs justification, as others have noted.
Agreed. > If these recommendations were general industry practice already, that might > be different. But these levels are still relatively lightly used. True and that's a good reason not to include them now. 7525bis is supposed to be a Best Current Practice in all three senses of the term. We've always envisioned that this BCP would be updated periodically, say every 5-10 years. With 7525 having been published in 2015 and 7525bis likely to be published in 2022, we're roughly on schedule... Peter _______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
