Skip to main content

Deprecating Obsolete Key Exchange Methods in TLS

The information below is for an old version of the document.
Document Type
This is an older version of an Internet-Draft whose latest revision state is "Replaced".
Expired & archived
Author Nimrod Aviram
Last updated 2022-01-10 (Latest revision 2021-07-09)
Replaced by draft-ietf-tls-deprecate-obsolete-kex, draft-ietf-tls-deprecate-obsolete-kex
RFC stream Internet Engineering Task Force (IETF)
Additional resources Mailing list discussion
Stream WG state Call For Adoption By WG Issued
Document shepherd (None)
IESG IESG state Expired
Consensus boilerplate Unknown
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document deprecates the use of RSA key exchange in TLS, and limits the use of Diffie Hellman key exchange over a finite field such as to avoid known vulnerabilities or improper security properties.


Nimrod Aviram

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)