Hi Stephen, * Stephen Farrell <[email protected]> [141116 16:48]: > "There are some environments that have hardware support for > AES-CCM but not AES-GCM. Where interoperability with such > devices is needed, the TLS_ECDHE_ECDSA_WITH_AES_128_CCM > ciphersuite is RECOMMENDED. There may also be niches where > this kind of device cannot use that ciphersuite perhaps > because they do not public key cryptography at all - this > BCP does not cover those niches." > > If getting agreement on a foo here is too hard then I'd suggest > instead adding a note somewhere that says: > > "There are some environments that have hardware support for > AES-CCM but not AES-GCM. There may also be niches where > this kind of device cannot use that ciphersuite perhaps > because they do not public key cryptography at all - this > BCP does not cover those niches."
To avoid further edits afterwards; If that text gets included in the document there's a small error on the last line of both parts "because they do not public key,.." would add 'support'. Aaron
signature.asc
Description: Digital signature
_______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
