[TLS] Protocol Action: 'Deprecating Secure Sockets Layer Version 3.0' to Best Current Practice (draft-ietf-tls-sslv3-diediedie-03.txt)
The IESG <iesg-secretary@ietf.org> Mon, 13 April 2015 18:02 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5CB041AD241; Mon, 13 Apr 2015 11:02:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.9
X-Spam-Level:
X-Spam-Status: No, score=-101.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, USER_IN_WHITELIST=-100] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9rPafidz4F_X; Mon, 13 Apr 2015 11:02:48 -0700 (PDT)
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 8BBC21AD2B2; Mon, 13 Apr 2015 11:02:46 -0700 (PDT)
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 5.13.1
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <20150413180246.22757.70956.idtracker@ietfa.amsl.com>
Date: Mon, 13 Apr 2015 11:02:46 -0700
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/ogSN_EIIV_cDLvzr9hNFafw44OA>
Cc: tls mailing list <tls@ietf.org>, tls chair <tls-chairs@tools.ietf.org>, RFC Editor <rfc-editor@rfc-editor.org>
Subject: [TLS] Protocol Action: 'Deprecating Secure Sockets Layer Version 3.0' to Best Current Practice (draft-ietf-tls-sslv3-diediedie-03.txt)
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Apr 2015 18:02:49 -0000
The IESG has approved the following document: - 'Deprecating Secure Sockets Layer Version 3.0' (draft-ietf-tls-sslv3-diediedie-03.txt) as Best Current Practice This document is the product of the Transport Layer Security Working Group. The IESG contact persons are Stephen Farrell and Kathleen Moriarty. A URL of this Internet Draft is: http://datatracker.ietf.org/doc/draft-ietf-tls-sslv3-diediedie/ Technical Summary Secure Sockets Layer version 3.0 (SSLv3) is no longer secure. This document requires that SSLv3 not be used. The replacement versions, in particular Transport Layer Security (TLS) 1.2, are considerably more secure and capable protocols. This document updates the backward compatibility sections of the TLS RFCs to prohibit fallback to SSLv3. Working Group Summary This document has been actively reviewed by the TLS working group. There is strong community consensus behind the document. Document Quality Are there existing implementations of the protocol? Yes, and that's the problem;-) However, many deployments and implementations have already started disabling SSLv3. Personnel Joseph Salowey is the document shepherd. Stephen Farrell is the responsible AD for this document.
- [TLS] Protocol Action: 'Deprecating Secure Socket… The IESG
- Re: [TLS] Protocol Action: 'Deprecating Secure So… Stephen Farrell