IETF Last Call Review of draft-ietf-tls-deprecate-obsolete-kex-05
review-ietf-tls-deprecate-obsolete-kex-05-opsdir-lc-dodge-2025-04-25-00

Request Review of draft-ietf-tls-deprecate-obsolete-kex
Requested revision No specific revision (document currently at 08)
Type IETF Last Call Review
Team Ops Directorate (opsdir)
Deadline 2025-04-28
Requested 2025-04-16
Requested by Mohamed Boucadair
Authors Nimrod Aviram
I-D last updated 2026-01-23 (Latest revision 2026-01-12)
Completed reviews Secdir IETF Last Call review of -05 by Dan Harkins (diff)
Genart IETF Last Call review of -05 by Mallory Knodel (diff)
Artart IETF Last Call review of -05 by Valery Smyslov (diff)
Opsdir IETF Last Call review of -05 by Menachem Dodge (diff)
Artart Telechat review of -06 by Valery Smyslov (diff)
Assignment Reviewer Menachem Dodge
State Completed
Request IETF Last Call review on draft-ietf-tls-deprecate-obsolete-kex by Ops Directorate Assigned
Posted at https://mailarchive.ietf.org/arch/msg/ops-dir/gKuAHfmt3U5EfhtVvBT46HJHh4M
Reviewed revision 05 (document currently at 08)
Result Ready
Completed 2025-04-25
review-ietf-tls-deprecate-obsolete-kex-05-opsdir-lc-dodge-2025-04-25-00
Document: draft-ietf-tls-deprecate-obsolete-kex
Title: Deprecating Obsolete Key Exchange Methods in TLS 1.2
Summary:
   This document deprecates the use of RSA key exchange and Diffie
   Hellman over a finite field in TLS 1.2, and discourages the use of
   static elliptic curve Diffie Hellman cipher suites.
Reviewer: Menachem Dodge
Review result: Ready

Hi

I have reviewed this document as part of the Operational directorate's ongoing
effort to review all IETF documents being processed by the IESG. Document
editors and WG chairs should treat these comments just like any other last call
comments.

While I'm not an expert on cryptology or TLS, I have no operational concerns
with the document. It is well written, and clear as to which key exchange
algorithms must be deprecated from TLS 1.2.

Thank you kindly.

Best Regards,
Menachem Dodge