* This is a bogus argument. First, staying with an old protocol version often leads to locking in unmaintained versions of old software. Second, using TLS1.2 does not technically address the issue. If the client were to exclusively offer DHE-based ciphersuites, then the visibility techniques that have been used in the past are thwarted.
Yes, exactly, it’s possible with TLS 1.2 now. Why has that not been a concern?
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
