A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Using TLS in Applications Working Group of the IETF. Title : Recommendations for Secure Use of TLS and DTLS Authors : Yaron Sheffer Ralph Holz Peter Saint-Andre Filename : draft-ietf-uta-tls-bcp-08.txt Pages : 26 Date : 2014-12-07 Abstract: Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS) are widely used to protect data exchanged over application protocols such as HTTP, SMTP, IMAP, POP, SIP, and XMPP. Over the last few years, several serious attacks on TLS have emerged, including attacks on its most commonly used cipher suites and modes of operation. This document provides recommendations for improving the security of deployed services that use TLS and DTLS. The recommendations are applicable to the majority of use cases. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-uta-tls-bcp/ There's also a htmlized version available at: http://tools.ietf.org/html/draft-ietf-uta-tls-bcp-08 A diff from the previous version is available at: http://www.ietf.org/rfcdiff?url2=draft-ietf-uta-tls-bcp-08 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ _______________________________________________ I-D-Announce mailing list I-D-Announce@ietf.org https://www.ietf.org/mailman/listinfo/i-d-announce Internet-Draft directories: http://www.ietf.org/shadow.html or ftp://ftp.ietf.org/ietf/1shadow-sites.txt