Last Call: <draft-ietf-tls-sslv3-diediedie-02.txt> (Deprecating Secure Sockets Layer Version 3.0) to Best Current Practice

The IESG <> Mon, 16 March 2015 23:49 UTC

Return-Path: <>
Received: from localhost ( []) by (Postfix) with ESMTP id EA8601ACD50; Mon, 16 Mar 2015 16:49:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -101.9
X-Spam-Status: No, score=-101.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, USER_IN_WHITELIST=-100] autolearn=ham
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id Rze5_s1ouUSX; Mon, 16 Mar 2015 16:49:05 -0700 (PDT)
Received: from (localhost [IPv6:::1]) by (Postfix) with ESMTP id 8E7D41ACD55; Mon, 16 Mar 2015 16:48:59 -0700 (PDT)
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: The IESG <>
To: IETF-Announce <>
Subject: Last Call: <draft-ietf-tls-sslv3-diediedie-02.txt> (Deprecating Secure Sockets Layer Version 3.0) to Best Current Practice
X-Test-IDTracker: no
X-IETF-IDTracker: 5.12.2
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <>
Date: Mon, 16 Mar 2015 16:48:59 -0700
Archived-At: <>
X-Mailman-Version: 2.1.15
List-Id: "IETF announcement list. No discussions." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Mon, 16 Mar 2015 23:49:11 -0000

The IESG has received a request from the Transport Layer Security WG
(tls) to consider the following document:
- 'Deprecating Secure Sockets Layer Version 3.0'
  <draft-ietf-tls-sslv3-diediedie-02.txt> as Best Current Practice

The IESG plans to make a decision in the next few weeks, and solicits
final comments on this action. Please send substantive comments to the mailing lists by 2015-03-30. Exceptionally, comments may be
sent to instead. In either case, please retain the
beginning of the Subject line to allow automated sorting.


   Secure Sockets Layer version 3.0 (SSLv3) is no longer secure.  This
   document requires that SSLv3 not be used.  The replacement versions,
   in particular Transport Layer Security (TLS) 1.2, are considerably
   more secure and capable protocols.

   This document updates the backward compatibility sections of the TLS
   RFCs to prohibit fallback to SSLv3.

The file can be obtained via

IESG discussion can be tracked via

No IPR declarations have been submitted directly on this I-D.

- ID nits says we should say in the abstract that we're
updating 5246 and that prohibiting-rc4 is now RFC 7465.
It also wants us to add the usual 2119 boilerplate. Those
will be taken care of after IETF LC.