On Tue, Nov 10, 2020 at 10:41 PM Yaron Sheffer wrote:
>
> Hi,
>
> We are now revising RFC 7525 for the new world, and in general we are
> following this draft. So, MUST NOT negotiate TLS 1.0 and 1.1. This brought up
> the question of SCSV, which was new when RFC 7525 was published but has since
On Tue, 10 Nov 2020 20:40:57 +0200
Yaron Sheffer wrote:
> I think marking the “oldversions” draft as “obsoletes RFC 7507
> (SCSV)” is not great from an ecosystem point of view. People will
> interpret it as “no need to implement SCSV in new code, no need to
> expose it as a configuration option i
Hi,
We are now revising RFC 7525 for the new world, and in general we are following
this draft. So, MUST NOT negotiate TLS 1.0 and 1.1. This brought up the
question of SCSV, which was new when RFC 7525 was published but has since been
widely implemented/deployed.
I think marking the “oldversio
