Re: Remove Legacy TLS Ciphersuites from Initial Handshake by Default

Is there an agreed timeline for deprecation of the technologies listed in the initial posting? We should be proactive in this field. For example, last month a plan to deploy 12000 devices to medical professionals has been finalised, despite the devices using 1024bit RSA keys - on the grounds th

Separating Firefox crypto code into removable parts

Looking for comments about feasibility of breaking-up Firefox TLS/SSL-handling code into easily-removable sections. I want to fully separate NSS code from code that handles: 1) MD5 signature handling 2) SHA1 signature handling 3) RSA key exchange 4) CBC mode 5) RC4 ciphers 6) SSLv3 7) TLSv