%% You should probably cite draft-ietf-tls-deprecate-obsolete-kex-05 instead of this revision. @techreport{ietf-tls-deprecate-obsolete-kex-00, number = {draft-ietf-tls-deprecate-obsolete-kex-00}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-ietf-tls-deprecate-obsolete-kex/00/}, author = {Carrick Bartle and Nimrod Aviram}, title = {{Deprecating Obsolete Key Exchange Methods in TLS}}, pagetotal = 20, year = 2022, month = jun, day = 15, abstract = {This document makes several prescriptions regarding the following key exchange methods in TLS, most of which have been superseded by better options: 1. This document deprecates the use of RSA key exchange in TLS. 2. It limits the use of Diffie Hellman key exchange over a finite field to avoid known vulnerabilities and improper security properties. 3. It discourages the use of static elliptic curve Diffie Hellman cipher suites.}, }