On Sat, Feb 19, 2022 at 04:28:52PM -0500, Ryan Sleevi wrote:
> On Sat, Feb 19, 2022 at 6:15 AM Ilari Liusvaara
> wrote:
>
> > > - Connection re-establishment affects the security and privacy
> > > assumptions and should be captured. I am not sure the concern is
> > > worse than the regular finger
A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Transport Layer Security WG of the IETF.
Title : Deprecating Obsolete Key Exchange Methods in TLS
Authors : Carrick Bartle
On Fri, Feb 25, 2022 at 11:17 AM Ilari Liusvaara
wrote:
> I have hard time seeing how one could construct downgrade attack out of
> this, as it just requests extra data from server on fallback. For most
> other retry stuff, downgrade attack risk is obvious as less secure modes
> are introduced /
Dear Sean Turner,
The session(s) that you have requested have been scheduled.
Below is the scheduled session information followed by
the original request.
tls Session 1 (2:00 requested)
Wednesday, 23 March 2022, Morning Session I 1000-1200
Room Name: Grand Park Hall 3 size: 250
> I only have some isolated random datapoints on number of disclosed WebPKI
> ICAs since 2021-02-08 (a bit over year ago), but during that time, that
> number has grown from 1669 to 1820.
Thx Ilari. Understood.
We are looking into how we could quantify how the complete ICA list changes
over t
