[TLS] RFC 7568 on Deprecating Secure Sockets Layer Version 3.0

rfc-editor@rfc-editor.org Thu, 25 June 2015 20:48 UTC

Return-Path: <wwwrun@rfc-editor.org>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 68D8B1B29CE; Thu, 25 Jun 2015 13:48:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.912
X-Spam-Level:
X-Spam-Status: No, score=-101.912 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, USER_IN_WHITELIST=-100] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IQ13SRsJQHKC; Thu, 25 Jun 2015 13:48:56 -0700 (PDT)
Received: from rfc-editor.org (rfc-editor.org [IPv6:2001:1900:3001:11::31]) by ietfa.amsl.com (Postfix) with ESMTP id F09CE1B29A5; Thu, 25 Jun 2015 13:48:55 -0700 (PDT)
Received: by rfc-editor.org (Postfix, from userid 30) id 15BEF180452; Thu, 25 Jun 2015 13:46:01 -0700 (PDT)
To: ietf-announce@ietf.org, rfc-dist@rfc-editor.org
X-PHP-Originating-Script: 1005:ams_util_lib.php
From: rfc-editor@rfc-editor.org
Message-Id: <20150625204601.15BEF180452@rfc-editor.org>
Date: Thu, 25 Jun 2015 13:46:01 -0700 (PDT)
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/NPSSPJKSMsH0LynNV3hSISptuxE>
Cc: tls@ietf.org, rfc-editor@rfc-editor.org
Subject: [TLS] RFC 7568 on Deprecating Secure Sockets Layer Version 3.0
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jun 2015 20:48:57 -0000

A new Request for Comments is now available in online RFC libraries.

        
        RFC 7568

        Title:      Deprecating Secure Sockets Layer Version 3.0 
        Author:     R. Barnes, M. Thomson,
                    A. Pironti, A. Langley
        Status:     Standards Track
        Stream:     IETF
        Date:       June 2015
        Mailbox:    rlb@ipv.sx, 
                    martin.thomson@gmail.com, 
                    alfredo@pironti.eu,
                    agl@google.com
        Pages:      7
        Characters: 13489
        Updates:    RFC 5246

        I-D Tag:    draft-ietf-tls-sslv3-diediedie-03.txt

        URL:        https://www.rfc-editor.org/info/rfc7568

        DOI:        http://dx.doi.org/10.17487/RFC7568

The Secure Sockets Layer version 3.0 (SSLv3), as specified in RFC
6101, is not sufficiently secure.  This document requires that SSLv3
not be used.  The replacement versions, in particular, Transport
Layer Security (TLS) 1.2 (RFC 5246), are considerably more secure and
capable protocols.

This document updates the backward compatibility section of RFC 5246
and its predecessors to prohibit fallback to SSLv3.

This document is a product of the Transport Layer Security Working Group of the IETF.

This is now a Proposed Standard.

STANDARDS TRACK: This document specifies an Internet Standards Track
protocol for the Internet community, and requests discussion and suggestions
for improvements.  Please refer to the current edition of the Official
Internet Protocol Standards (https://www.rfc-editor.org/standards) for the 
standardization state and status of this protocol.  Distribution of this 
memo is unlimited.

This announcement is sent to the IETF-Announce and rfc-dist lists.
To subscribe or unsubscribe, see
  https://www.ietf.org/mailman/listinfo/ietf-announce
  https://mailman.rfc-editor.org/mailman/listinfo/rfc-dist

For searching the RFC series, see https://www.rfc-editor.org/search
For downloading RFCs, see https://www.rfc-editor.org/rfc.html

Requests for special distribution should be addressed to either the
author of the RFC in question, or to rfc-editor@rfc-editor.org.  Unless
specifically noted otherwise on the RFC itself, all RFCs are for
unlimited distribution.


The RFC Editor Team
Association Management Solutions, LLC