| rfc9963v1.txt | rfc9963.txt | |||
|---|---|---|---|---|
| skipping to change at line 143 ¶ | skipping to change at line 143 ¶ | |||
| Servers that wish to support clients authenticating with legacy | Servers that wish to support clients authenticating with legacy | |||
| RSASSA-PKCS1-v1_5-only keys MAY send these values in the | RSASSA-PKCS1-v1_5-only keys MAY send these values in the | |||
| signature_algorithms extension of the CertificateRequest message and | signature_algorithms extension of the CertificateRequest message and | |||
| accept them in the client CertificateVerify message. Servers MUST | accept them in the client CertificateVerify message. Servers MUST | |||
| NOT accept these code points if not offered in the CertificateRequest | NOT accept these code points if not offered in the CertificateRequest | |||
| message. | message. | |||
| Clients with such legacy keys MAY negotiate the use of these | Clients with such legacy keys MAY negotiate the use of these | |||
| signature algorithms if offered by the server. Clients SHOULD NOT | signature algorithms if offered by the server. Clients SHOULD NOT | |||
| negotiate them with keys that support RSASSA-PSS, though this may not | negotiate the use of these signature algorithms with keys that | |||
| be practical to determine in all applications. For example, | support RSASSA-PSS, though this may not be practical to determine in | |||
| attempting to test a key for support might display a message to the | all applications. For example, attempting to test a key for support | |||
| user or have other side effects. | might result in a message to the user or have other side effects. | |||
| TLS implementations SHOULD disable these code points by default. See | TLS implementations SHOULD disable these code points by default. See | |||
| Section 4. | Section 4. | |||
| 4. Security Considerations | 4. Security Considerations | |||
| The considerations in Section 1 do not apply to server keys, so these | The considerations in Section 1 do not apply to server keys, so these | |||
| new code points are forbidden for use with server certificates. | new code points are forbidden for use with server certificates. | |||
| RSASSA-PSS continues to be required for TLS 1.3 servers using RSA | RSASSA-PSS continues to be required for TLS 1.3 servers using RSA | |||
| keys. This minimizes the impact to only those cases in which it is | keys. This minimizes the impact to only those cases in which it is | |||
| End of changes. 1 change blocks. | ||||
| 4 lines changed or deleted | 4 lines changed or added | |||
This html diff was produced by rfcdiff 1.48. | ||||