On Thu, Dec 22, 2022 at 6:10 AM Hubert Kario <hka...@redhat.com> wrote:
> On Wednesday, 21 December 2022 19:13:36 CET, Rob Sayre wrote: > > On Wed, Dec 21, 2022 at 5:59 AM Hubert Kario <hka...@redhat.com> wrote: > > > > Telling people that they shouldn't use the only things they can use > means... > > > > Well, I'd be curious to know what the use cases are. > > The stuff Uri Blumenthal already mentioned: software and hardware that has > lifetimes measured in decades. Sorry to be a pain, but like what? Everything older than 2008 is deprecated. That's 14 years, and the TLS 1.2 RFC has been updated by several RFCs in the meantime. https://datatracker.ietf.org/doc/html/rfc5246 > What I'm against is blanket forbidding of FFDHE in TLSv1.2. > That's not what deprecation means—the choice of words matters in this case. Here is a definition: https://en.wikipedia.org/wiki/Deprecation "In several fields, especially computing, deprecation is the discouragement of use of some terminology, feature, design, or practice, typically because it has been superseded or is no longer considered efficient or safe, without completely removing it or prohibiting its use." One might quibble about whether all parts of this definition apply here, but "discouragement" (RFC 9325) and "superseded" (TLS 1.3) definitely do. thanks, Rob
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
