> On Jul 8, 2022, at 9:37 AM, Thomas Fossati wrote:
>
>
> I keep an eye on data from a cute crawler [0] that regularly scans the
> top 1 million web sites, and twice per year makes a summary of the
> trends. (You can find the freshly collected raw data [1] as well as the
> most recent summary
> On Jul 14, 2022, at 1:13 PM, Peter Saint-Andre wrote:
>
>>
>> Given the requirements for crypto agility, I think this there should be at
>> least one MTI algorithm that does not rely on EC. Pinning all your hopes on a
>> single algorithm surely is not the best security advice the IETF can pr
> On Jul 30, 2022, at 1:40 PM, Peter Saint-Andre wrote:
>
> Hi again,
>
> The authors have conferred on this and at this time we don't think that we
> can recommend anything other than EC ciphers, for several reasons:
>
> 1. DHE negotiation is broken.
Perhaps a bit more explanation in the d
Reviewer: Cullen Jennings
Review result: Almost Ready
To have impact on actually deployments, this documents need to be clear in
explaining why it makes the recommendations it makes. For the most part it does
do this but I am reviewing it from the point of view of will it be compelling
in helping
