I’m going to close this thread. We discussed SHA-1 support in TLS on the list and at the interim the chairs made the consensus call that PR#231 reflects the WG’s consensus.
Note that Stephen started a thread on the saag list about further work to remove SHA-1 from protocols [1]; maybe the references both Dave and Stephen cite will accelerate the demise of SHA-1 issued certs. spt [1] http://mailarchive.ietf.org/arch/msg/saag/1iiiMLJmrtEMSmghoYO6lC_xje4 _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
