assurance - Re: [Assurance] Draft NIST TLS document SP800-52 Revision 1 is out for review/comment
Subject: Assurance
List archive
Re: [Assurance] Draft NIST TLS document SP800-52 Revision 1 is out for review/comment
Chronological Thread
- From: "Joe St Sauver" <>
- To:
- Subject: Re: [Assurance] Draft NIST TLS document SP800-52 Revision 1 is out for review/comment
- Date: Wed, 25 Sep 2013 18:00:58 -0700 (PDT)
<>
commented:
#***While SSL 3.0 is the most secure of the SSL protocol versions,
#it is not approved for use in the protection of Federal information
#because it relies in part on the use of cryptographic algorithms
#that are not Approved.
I must be mis-parsing that assertion somehow. SSL 3.0 dates from 1996.
If I may be allowed to steal a line from Ralph Nader, it should be
considered "unsafe at any speed."
Folks really want to get to TLS 1.2 at this point, both on the server
side and the browser side.
Regards,
Joe
- [Assurance] Draft NIST TLS document SP800-52 Revision 1 is out for review/comment, Capehart,Jeffrey D, 09/25/2013
- <Possible follow-up(s)>
- Re: [Assurance] Draft NIST TLS document SP800-52 Revision 1 is out for review/comment, Joe St Sauver, 09/25/2013
- RE: [Assurance] Draft NIST TLS document SP800-52 Revision 1 is out for review/comment, Capehart,Jeffrey D, 09/26/2013
Archive powered by MHonArc 2.6.16.