I removed all these recommendations on 128/256 security. I believe this address this thread.
I also believe a profile document would be useful and detail these details. Do you have any opinion about such a document ? Tank you for the feed backs! Yours, Daniel On Tue, Nov 8, 2016 at 7:24 PM, Martin Thomson <martin.thom...@gmail.com> wrote: > On 8 November 2016 at 21:08, Daniel Migault <daniel.miga...@ericsson.com> > wrote: > > TLS enable curve negotiation but not for code point. This makes > restrictions > > on code points hard to implement. As a result Endpoints MAY treat > > negotiation of key sizes smaller than the lower limits as a connection > error > > of type insufficient_security(71) for TLS 1.2 and TLS 1.3. > > I really had a hard time parsing this. You don't connect this to > Diffie-Hellman at all, but I think that is what you are talking about. > But if your point is that this is an ECDHE-specific draft, then you > don't need to say anything at all. > > nit "TLS enables" > > _______________________________________________ > TLS mailing list > TLS@ietf.org > https://www.ietf.org/mailman/listinfo/tls >
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
