> An actual profile of TLS would be something like MUST TLS 1.1 or above, > MUST PFS suites, MUST AES and SHA256, MUST E-then-M (and by implication > what isn't explicitly permitted is denied).
HTTP-2 did this kind of thing, and IIRC are the first to do so. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
