[TLS] I-D Action: draft-ietf-tls-oldversions-deprecate-08.txt
internet-drafts@ietf.org Wed, 14 October 2020 14:56 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: tls@ietf.org
Delivered-To: tls@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id E47703A010A; Wed, 14 Oct 2020 07:56:23 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: tls@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 7.20.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: tls@ietf.org
Message-ID: <160268738389.2892.3119603874291002520@ietfa.amsl.com>
Date: Wed, 14 Oct 2020 07:56:23 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/GUkDO3icq5UlhXXeEkFVqVpLJm8>
Subject: [TLS] I-D Action: draft-ietf-tls-oldversions-deprecate-08.txt
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 14 Oct 2020 14:56:24 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Transport Layer Security WG of the IETF.
Title : Deprecating TLSv1.0 and TLSv1.1
Authors : Kathleen Moriarty
Stephen Farrell
Filename : draft-ietf-tls-oldversions-deprecate-08.txt
Pages : 22
Date : 2020-10-14
Abstract:
This document, if approved, formally deprecates Transport Layer
Security (TLS) versions 1.0 (RFC 2246) and 1.1 (RFC 4346).
Accordingly, those documents (will be moved|have been moved) to
Historic status. These versions lack support for current and
recommended cryptographic algorithms and mechanisms, and various
government and industry profiles of applications using TLS now
mandate avoiding these old TLS versions. TLSv1.2 has been the
recommended version for IETF protocols since 2008, providing
sufficient time to transition away from older versions. Removing
support for older versions from implementations reduces the attack
surface, reduces opportunity for misconfiguration, and streamlines
library and product maintenance.
This document also deprecates Datagram TLS (DTLS) version 1.0
(RFC6347), but not DTLS version 1.2, and there is no DTLS version
1.1.
This document updates many RFCs that normatively refer to TLSv1.0 or
TLSv1.1 as described herein. This document also updates the best
practices for TLS usage in RFC 7525 and hence is part of BCP195.
The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-tls-oldversions-deprecate/
There are also htmlized versions available at:
https://tools.ietf.org/html/draft-ietf-tls-oldversions-deprecate-08
https://datatracker.ietf.org/doc/html/draft-ietf-tls-oldversions-deprecate-08
A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-tls-oldversions-deprecate-08
Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
- [TLS] I-D Action: draft-ietf-tls-oldversions-depr… internet-drafts