Filippo Valsorda <fili...@ml.filippo.io> writes: >The most important performance consideration in TLS is avoiding Hello Retry >Request round-trips due to the server supporting none of the client's key >shares.
This is already a huge problem with Chrome because it doesn't support any MTI curves in its client hello, which means it triggers a hello retry on *every* *single* *connect* to a compliant implementation. This will also heavily skew any statistics, because Chrome's noncompliant behaviour will show up almost everywhere. So I'm not sure that a popularity poll on curves has much meaning. Peter. _______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
