IPP> MOD - drop mention of TLS 40 bit ciphers (or 56 bit ciphers) to m

Hastings, Tom N (hastings@cp10.es.xerox.com)
Mon, 15 Feb 1999 15:54:21 -0800

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Hastings, Tom N: "IPP> MOD - Drop Restart-Job OPTION 1 to accept when in 'processing' st"
• Previous message: Manros, Carl-Uno B: "RE: IPP> MOD - Updated IPP/1.1 Model and Semantics posted - revie"

Ira points out that the Federal government has raised the limit from 40 bits
(3 minutes to crack on a PC) to 56 bits (2 months). He also suggests that
we shouldn't even get into this. Refer the reader to TLS.

So replace:
It is possible that due to certain government export restrictions some
non-compliant versions of this extension could be deployed. Implementations
wishing to inter-operate with such non-compliant versions MAY offer the
TLS_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA mechanism. However, since 40 bit
ciphers are known to be vulnerable to attack by current technology, any
client which actives a 40 bit cipher MUST NOT indicate to the user that the
connection is completely secure from eavesdropping.
with:

See the TLS specification [RFC2246] for any government export restrictions
on implementations conforming to the "Mandatory Cipher Suites".

Tom Hastings
(310) 333-6413

• Next message: Hastings, Tom N: "IPP> MOD - Drop Restart-Job OPTION 1 to accept when in 'processing' st"
• Previous message: Manros, Carl-Uno B: "RE: IPP> MOD - Updated IPP/1.1 Model and Semantics posted - revie"

Comments are owned by the poster. All other material is Copyright © 2001-2024 The Printer Working Group. All rights reserved. IPP Everywhere, the IPP Everywhere logo, and the PWG logo are trademarks of the IEEE-ISTO.
About the PWG · Privacy Policy · PWG Webmaster