Hi,
Changes in -04:
- Eric Rescorla commented that we should ask whether it's time to deprecate or
at least Discourage psk_ke. Changed the psk_ke suggestion from “N” to “D”
- Added that BoringSSL has chosen to not even implement psk_ke
- Eric Rescorla commented that he thinks the RFC 9150 algo
Hi John,
On Wed, Jan 11, 2023, 21:49 John Mattsson wrote:
> Hi,
>
>
>
> Changes in -04:
>
> - Eric Rescorla commented that we should ask whether it's time to
> deprecate or at least Discourage psk_ke. Changed the psk_ke suggestion from
> “N” to “D”
>
>
> - Added that BoringSSL has chosen to not
Hi Loganaden,
Thanks for the info! I think this shows that also under the old RFC8447
definition of “generally recommended for implementations to support” the “Y”
classification was wrong.
Cheers,
John
From: Loganaden Velvindron
Date: Wednesday, 11 January 2023 at 20:31
To: John Mattsson
Cc:
Hi,
I really like the updates to the Recommended column. Making "Y" normative
RECOMMENDED and introducing "D" seems like great changes. Good job!
Some high level comments/questions/suggestions
-
- It is very hard to understand from the TLS Cipher Suites registry whi
