Skip to main content

Deprecating Secure Sockets Layer Version 3.0
draft-thomson-sslv3-diediedie-00

Document Type Replaced Internet-Draft (candidate for tls WG)
Authors Richard Barnes , Martin Thomson , Alfredo Pironti , Adam Langley
Last updated 2015-10-14 (Latest revision 2014-11-10)
Replaced by RFC 7568
Stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Formats
Expired & archived
plain text xml htmlized pdfized bibtex
Stream WG state Call For Adoption By WG Issued
Document shepherd (None)
IESG IESG state Replaced by draft-ietf-tls-sslv3-diediedie
Consensus boilerplate Unknown
Telechat date (None)
Responsible AD (None)
Send notices to (None)
This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at:
https://www.ietf.org/archive/id/draft-thomson-sslv3-diediedie-00.txt

Abstract

Secure Sockets Layer version 3.0 (SSLv3) [RFC6101] is no longer secure. This document requires that SSLv3 not be used. The replacement versions, in particular Transport Layer Security (TLS) 1.2 [RFC5246], are considerably more secure and capable protocols. This document updates the backward compatibility sections of the TLS RFCs to prohibit fallback to SSLv3.

Authors

Richard Barnes
Martin Thomson
Alfredo Pironti
Adam Langley

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)