[gnutls-devel] GnuTLS | tls: add flag to disable session ticket in TLS 1.2 (!1475)
Read-only notification of GnuTLS library development activities
gnutls-devel at lists.gnutls.org
Wed May 4 09:14:13 CEST 2022
Alexander Sosedkin started a new discussion on NEWS: https://gitlab.com/gnutls/gnutls/-/merge_requests/1475#note_934265154
>
> ** libgnutls: The GNUTLS_NO_TICKETS_TLS12 flag and %NO_TICKETS_TLS12 priority
> modifier have been added to disable session ticket usage in TLS 1.2 because
> - it does not forward secrecy (#477). Future backward incompatibility: in the
> - next major release of GnuTLS, we plan to remove those flag and modifier, and
> - make GNUTLS_NO_TICKETS and %NO_TICKETS only affect TLS 1.2.
> + it does not provide forward secrecy (#477). On the other hand, since session
> + tickets in TLS 1.3 does provide forward secrecy, the PFS priority string now
s/does/do/
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1475#note_934265154
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20220504/8b44fa4e/attachment.html>
More information about the Gnutls-devel
mailing list