Peter Saint-Andre <stpe...@mozilla.com> writes: >What is the sense of the WG about saying in 7525bis that support for RSASSA- >PSS should or should not be RECOMMENDED for TLS 1.2?
Seems like a really bad idea. TLS, back to at least SSLv2 25 yeas ago, has always done PKCS#1v1.5 RSA, not PSS. I get that TLS 1.3 wants to use PSS, but it makes no sense to force use in a different protocol that's never used it throughout its entire existence. Peter. _______________________________________________ Uta mailing list Uta@ietf.org https://www.ietf.org/mailman/listinfo/uta