Yes, sticking to TLS 1.2 is an option. On the other hand the equipment in scenarios like energy automation is used for a very long time. TLS is used here to secure the communication between specific devices. Besides that, it is also used to allow access for, e.g., service technicians via web based management on the same devices. One concern is that once in a while the support for TLS 1.2, e.g., in common browsers will run out and the devices need to be upgraded to support different versions of TLS to cope with different security policies. But well, this is likely to be the fate for every long lasting equipment.
The other point is that for NULL cipher suites that work with elliptic curves no SHA 256 suite is defined. There is just one with RSA. In several use cases there ECDSA is preferred over RSA also due to the required increasing key length and the connected computational load on the devices. best regards Steffen -----Original Message----- From: Salz, Rich [mailto:rs...@akamai.com] Sent: Mittwoch, 5. April 2017 19:16 To: Fries, Steffen (CT RDA ITS); Hanno Böck; tls@ietf.org Subject: RE: [TLS] Support of integrity only cipher suites in TLS 1.3 Do you have a compelling need for TLS 1.3 as opposed to earlier versions which do have null encryption? _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
