Hi folks I note that we are proposing to uplift RFC 5289 to PS, despite the fact that it standardizes some CBC cipher suites, which the WG is looking to move away from. I recognize that these are the only cipher suites you can use in TLS 1.0 and 1.1, but we also want people to move away from them.
This problem is probably solvable by marking the registry as Not Recommended, but I wondered if anyone had other thoughts on this topic? -Ekr
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
