On Sat, Dec 14, 2013 at 06:28:54PM -0800, Brian Smith wrote: > Kurt, > > Thanks for your suggestions. > > On Sat, Dec 14, 2013 at 12:46 PM, Kurt Roeckx <k...@roeckx.be> wrote: > > > I think we need to come up with a plan to improve security in the > > long run. I think what we would like to see in general is: > > - Only SHA256 or better (and so TLS 1.2) > > > > This is gated almost purely on servers actually switching to SHA-2 certs > and TLS 1.2. See https://bugzilla.mozilla.org/show_bug.cgi?id=942515, which > is related to this. I think it makes sense to revisit this after we figure > out exactly what we're doing with SHA-1-based certificates, because it > doesn't make sense to plan to go "SHA-2 only" until that happens.
I was thinking about microsoft's intention when proposing this, but I couldn't remember that their proposal was for 2017. I think their proposal only covers the certificates, while mine would cover everything including the MAC. The certificates are probably easier to do since you get to tell the CAs what you will allow. Kurt -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
