On Wednesday, 24 August 2016 22:59:23 CEST Viktor Dukhovni wrote: > I am not opposed to a "diediedie" RFC, if that is likely to be helpful. > For TLS, this ciphersuite is already comparatively rare, and perhaps its > disappearance will not be sped up by a "diediedie" RFC? Would an RFC > help to prod vendors into action more than the already published findings? > Would our collective energies be better focused on other, more pressing > goals?
People that care for support of Windows XP or Windows 2003 will use 3DES either way. People that don't care about those OSes, are probably already doing everything to not negotiate it, if only to conserve TLS terminator resources. When RC4 die-die-die was published, a lot of servers negotiated RC4 (because of BEAST), it's not the case with 3DES. -- Regards, Hubert Kario Senior Quality Engineer, QE BaseOS Security team Web: www.cz.redhat.com Red Hat Czech s.r.o., Purkyňova 99/71, 612 45, Brno, Czech Republic
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
