Hiya,
On 15/11/2024 17:12, John Mattsson wrote:
WebPKI might want to wait but the many infrastructure use cases of TLS, DTLS, and QUIC need to migrate very soon. US government new requirement is that pure RSASSA, ECDSA, and EdDSA are forbidden from after 2035. European countries have similar recommendations/requirements.
Other than regulatory issues, what technical reasons are there justifying a "need to migrate very soon"? I don't think we need to answer that now, but it's something that needs to be considered when developing guidance as to when these additional new algs might best be ignored or deployed. Cheers. S.
OpenPGP_signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org