Hi Jean-Marc, You are right. We haven't been talking about the latest NSS changes as often as we should. Sometimes we just forget to post our status updates here. Sometimes our public statements about certain topics must be approved by our managers or legal departments. (The legal issues around employee blogging about work have been discussed in the media in recently, but those issues aren't new to us. We face the same issues every time we write in the newsgroup or Bugzilla.)
As you have found out, our web pages on http://www.mozilla.org/projects/security/pki/nss/ and http://wiki.mozilla.org/NSS:Roadmap are regularly reviewed and updated. That's a good way to learn about NSS directions and plans. We have been working on the ECC cipher suites for TLS since last year. We hold weekly meetings with other vendors that implement the brand new RFC 4492 (http://www.ietf.org/rfc/rfc4492.txt) to ensure that the RFC is clearly specified and the implementations interoperate. Both the ECC cipher suites for TLS and the Server Name Indication require support for TLS extensions. This is one reason why we implemented these two features at the same time. Wan-Teh _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
