Deprecating MD5 and SHA-1 signature hashes in TLS 1.2

Document Type Replaced Internet-Draft (tls WG)
Authors Loganaden Velvindron  , Kathleen Moriarty  , Alessandro Ghedini 
Last updated 2019-08-08 (latest revision 2019-05-29)
Replaced by RFC 9155
Stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Expired & archived
plain text xml htmlized pdfized bibtex
Stream WG state Adopted by a WG
Document shepherd No shepherd assigned
IESG IESG state Replaced by draft-ietf-tls-md5-sha1-deprecate
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


The MD5 and SHA-1 hashing algorithms are steadily weakening in strength and their deprecation process should begin for their use in TLS 1.2 digital signatures. However, this document does not deprecate SHA-1 in HMAC for record protection.


Loganaden Velvindron (
Kathleen Moriarty (unknown-email-Kathleen-Moriarty)
Alessandro Ghedini (unknown-email-Alessandro-Ghedini)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)