[TLS] I-D Action: draft-ietf-tls-oldversions-deprecate-12.txt

internet-drafts@ietf.org Thu, 21 January 2021 20:32 UTC

Return-Path: <internet-drafts@ietf.org>
X-Original-To: tls@ietf.org
Delivered-To: tls@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 1F24C3A09CD; Thu, 21 Jan 2021 12:32:00 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: tls@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 7.24.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: tls@ietf.org
Message-ID: <161126112008.32080.3413551142959488911@ietfa.amsl.com>
Date: Thu, 21 Jan 2021 12:32:00 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/8bCk3jABPbcZfrOVQ6TMPnlrcb0>
Subject: [TLS] I-D Action: draft-ietf-tls-oldversions-deprecate-12.txt
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Jan 2021 20:32:00 -0000

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Transport Layer Security WG of the IETF.

        Title           : Deprecating TLSv1.0 and TLSv1.1
        Authors         : Kathleen Moriarty
                          Stephen Farrell
	Filename        : draft-ietf-tls-oldversions-deprecate-12.txt
	Pages           : 24
	Date            : 2021-01-21

   This document, if approved, formally deprecates Transport Layer
   Security (TLS) versions 1.0 (RFC 2246) and 1.1 (RFC 4346).
   Accordingly, those documents (will be moved|have been moved) to
   Historic status.  These versions lack support for current and
   recommended cryptographic algorithms and mechanisms, and various
   government and industry profiles of applications using TLS now
   mandate avoiding these old TLS versions.  TLSv1.2 became the
   recommended version for IETF protocols in 2008, (subsequently being
   obsoleted by TLSv1.3 in 2018), providing sufficient time to
   transition away from older versions.  Removing support for older
   versions from implementations reduces the attack surface, reduces
   opportunity for misconfiguration, and streamlines library and product

   This document also deprecates Datagram TLS (DTLS) version 1.0 (RFC
   4347), but not DTLS version 1.2, and there is no DTLS version 1.1.

   This document updates many RFCs that normatively refer to TLSv1.0 or
   TLSv1.1 as described herein.  This document also updates the best
   practices for TLS usage in RFC 7525 and hence is part of BCP 195.

The IETF datatracker status page for this draft is:

There are also htmlized versions available at:

A diff from the previous version is available at:

Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at: