Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FIXS V1.1 RC2] Enhance feature comparison between TLS 1.2 and TLS 1.3 #5

Open
kleihan opened this issue Apr 8, 2022 · 0 comments
Open

[FIXS V1.1 RC2] Enhance feature comparison between TLS 1.2 and TLS 1.3 #5

kleihan opened this issue Apr 8, 2022 · 0 comments
Assignees
@nhorlock @donmendelson @kilkennyc
Labels
documentation Improvements or additions to documentation

Comments

@kleihan
Copy link
Member

kleihan commented Apr 8, 2022

Provided by Li Zhu:

Protocol Features (https://www.fixtrading.org/standards/fixs-online/#protocol-features)
This part compares TLS 1.3 with TLS 1.2. But the list is far from complete. From the view of security, TLS 1.3 has made significant improvements over TLS 1.2, rules out many insecure or obsolete algorithms, and most significantly uses AEAD algorithms only. As a guide, we had better incorporate this information into our guide. The information can be found in section 1.2 of RFC 8446. The FIXS Appendix is recommended to be changed, at least to make it clear that in Section 5.3 of Appendix A (List of recommended cipher suites), CBC mode should be used with caution.
@kleihan kleihan added the documentation Improvements or additions to documentation label Apr 8, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nhorlock nhorlock

@donmendelson donmendelson

@kilkennyc kilkennyc

Labels
documentation Improvements or additions to documentation
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@nhorlock @donmendelson @kleihan @kilkennyc