Peter Gutmann <pgut001@xxxxxxxxxxxxxxxxx> wrote:
> Some sort of qualification like that would be my preference as well. I don't
> think I've ever encountered TLS 1.3 in SCADA (I mean, there's still a lot of
> TLS 1.0 out there that people are struggling to move to TLS 1.2), so you could
> just as easily say "TLS 1.3 has next to no deployment" depending on your terms
> of reference.
Yes.
TLS 1.3 is ubiquitous, so why is TLS 1.2 still enabled at all major sites?
In the end, what out document is saying is:
Please do TLS 1.3 [and newer] (SHOULD)
Please do not turn off TLS 1.2 (MAY) yet.
> OTOH I can also see that this could end up as a bit of a bus depot [*] to sort
> out the phrasing.
many buses with many paint schemes :-)
> [*] Like a bikeshed, but bigger and more complex.
--
last-call mailing list -- last-call@xxxxxxxx
To unsubscribe send an email to last-call-leave@xxxxxxxx
