The WHY you ask is in the answer. It is a huge proposition requiring change to virtually every platform and application. Not to mention all the management, monitoring and security platforms. It would be very expensive and time consuming. And when they ask why this is necessary, it is because the new version of the existing protocol is not backwards compatible, which is something we have come to expect.
From: Ted Lemon [mailto:mel...@fugue.com] Sent: Monday, October 23, 2017 12:44 PM To: Ackermann, Michael <mackerm...@bcbsm.com> Cc: Salz, Rich <rs...@akamai.com>; tls@ietf.org Subject: Re: [TLS] Publication of draft-rhrd-tls-tls13-visibility-00 On Oct 23, 2017, at 12:39 PM, Ackermann, Michael <mackerm...@bcbsm.com<mailto:mackerm...@bcbsm.com>> wrote: 1. If staying with TLS 1.2 indefinitely was considered acceptable, would we even be having these discussions? This is a vacuous argument. Nobody has provided any evidence of any kind that "enterprise" installations relying on TLS 1.2 would ever switch to TLS 1.3, much less that they would do so in any kind of hurry. You demonstrate why with your very next bullet point: 1. 2. Modifying Server, application and logging infrastructure is a huge, expensive proposition, that executive management would not be receptive to at all. Not to mention the logistics to follow if they were. If indeed that unmovable mountain, executive management, must be moved in the case of switching to TLS 1.3 or in the case of switching to something else, it seems obvious to me that it is better to switch to something else. Can you give me a clear technical reason why that is not preferable? The information contained in this communication is highly confidential and is intended solely for the use of the individual(s) to whom this communication is directed. If you are not the intended recipient, you are hereby notified that any viewing, copying, disclosure or distribution of this information is prohibited. Please notify the sender, by electronic mail or telephone, of any unintended receipt and delete the original message without making any copies. Blue Cross Blue Shield of Michigan and Blue Care Network of Michigan are nonprofit corporations and independent licensees of the Blue Cross and Blue Shield Association.
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
