[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Poll: What do you want to see implemented in GnuTLS next?
From: |
Simon Josefsson |
Subject: |
Poll: What do you want to see implemented in GnuTLS next? |
Date: |
Thu, 27 Aug 2009 15:12:16 +0200 |
User-agent: |
Gnus/5.110011 (No Gnus v0.11) Emacs/23.1 (gnu/linux) |
Daiki Ueno <address@hidden> writes:
>> Finishing the TLS 1.2 support and adding the new cipher suites is a
>> high-priority task and it shouldn't be too difficult since there are TLS
>> 1.2 test servers out there to test with.
>
> Thanks for the hint. I'll check which features of TLS 1.2 are not
> implemented. Adding HMAC-SHA256 cipher suites looks one thing to do.
Actually TLS 1.2 is not working in GnuTLS now, the drafts changed how
the negotiation worked after I implemented it and I never found time to
update it to support the protocol defined by the final RFC. I don't
expect finishing this would require major changes, so it would be a
great contribution to finish the TLS 1.2 support. Definitely adding
SHA256 ciphers would be good.
Reading doc/TODO I couldn't find any other easily identifiable task that
is more important except possibly DTLS support (but Jonathan is working
on that already).
Maybe we can turn this into an open poll. What do people want to see
happen next?
AES-GCM cipher suites would be nice. There is also the OCSP extension,
which would be fairly easy to add.
/Simon
- ECC cipher suites, Daiki Ueno, 2009/08/25
- Re: ECC cipher suites, Simon Josefsson, 2009/08/25
- Re: ECC cipher suites, Daiki Ueno, 2009/08/27
- Poll: What do you want to see implemented in GnuTLS next?,
Simon Josefsson <=
- [PATCH] client-side TLS 1.2 support, Daiki Ueno, 2009/08/31
- Re: [PATCH] client-side TLS 1.2 support, Simon Josefsson, 2009/08/31
- Re: [PATCH] client-side TLS 1.2 support, Daiki Ueno, 2009/08/31
- Re: [PATCH] client-side TLS 1.2 support, Simon Josefsson, 2009/08/31
- Re: [PATCH] client-side TLS 1.2 support, Daiki Ueno, 2009/08/31
- Re: [PATCH] client-side TLS 1.2 support, Daiki Ueno, 2009/08/31
- Re: [PATCH] client-side TLS 1.2 support, Simon Josefsson, 2009/08/31
- Re: [PATCH] client-side TLS 1.2 support, Simon Josefsson, 2009/08/31
- Re: [PATCH] client-side TLS 1.2 support, Simon Josefsson, 2009/08/31
- Re: [PATCH] client-side TLS 1.2 support, Simon Josefsson, 2009/08/31