> How would this group feel about a proposal to address this by > specifying in the 1.3 specification that implementations must ensure > that the strength of the certificate must be >= strength of ECDHE/DHE >= > strength of the cipher?
Strongly opposed, for the reasons Martin said. Insisting that everything line up is kinda like crypto OCD. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
