On Tue, 2017-12-05 at 12:00 +0100, Nikos Mavrogiannopoulos wrote: > On Mon, 2017-12-04 at 17:24 -0800, Eric Rescorla wrote: > > Hi folks, > > > > I've put together a PR that attemps to address the PSS issue. > > > > See: > > https://github.com/tlswg/tls13-spec/pull/1114
As I guess, we cannot mandate RSA-PSS private keys and certificates for TLS1.3, I've followed up with a subsection on security considerations for re-using the RSA and RSA-PSS private keys. That includes recommendations to reduce the impact from cross-protocol attacks affecting these keys. https://github.com/tlswg/tls13-spec/pull/1123 regards, Nikos _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
