On Fri, Aug 28, 2015 at 07:17:39PM +0000, Dang, Quynh wrote: > Hi all, > > DSA is supported in the previous versions of TLS. It would be nice > if someone who uses DSA can use it in TLS 1.3 as well.
Well, at least for the web, DSA is no longer an option because major browsers have dropped support for it. > People who don't use DSA, then they don't use DSA. People who use > DSA right, it should be fine for them to use DSA. Unfortunately, it is not just signers, it is also verifiers. > I don't see a convincing reason to remove support of DSA in TLS 1.3. Well, no (projected) use. Many features have been stripped from TLS 1.3 on those grounds only. Also, if DSA was to be supported, one would need to specify how to determine the hash function (use of fixed SHA-1 doesn't fly). And 1024-bit prime is too small. -Ilari _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
