On Fri, Aug 19, 2016 at 6:03 AM, Peter Gutmann <pgut...@cs.auckland.ac.nz> wrote: > Ilari Liusvaara <ilariliusva...@welho.com> writes: > >>AFAIK, that failure can only happen if at least one of: > > [...] > > New groups are introduced but the server or client only support the old ones. > So the server does ffdhe2048, the client does ffdhe2048', both are quite happy > to do DHE-2048 but as a result of complying with 7919 they're forced to use > RSA.
Let's assume we don't introduce more groups for no reason. Oh wait, we totally did with ECC with this outcome. Let's not do that again. > > Peter. > _______________________________________________ > TLS mailing list > TLS@ietf.org > https://www.ietf.org/mailman/listinfo/tls -- "Man is born free, but everywhere he is in chains". --Rousseau. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
