On 05/20/2017 12:55 AM, Viktor Dukhovni wrote: >> On May 20, 2017, at 1:41 AM, Nico Williams <n...@cryptonector.com> wrote: >> >> "When using TLS to authenticate the server, certificate signature >> algorithms weaker than <list of weakest acceptable signature algs here> >> MUST NOT be used." > Minor correction, perhaps you really mean to say "when using RFC5280 (PKIX) > to authenticate... (the [server or client?]). TLS is just the transport > after all. >
Given the apparent strength of opinion against removing these supposed restrictions entirely, it seems like this text (or something similar) is probably the best we can do. -Ben
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
