Jan Schaumann on Nostr: NIST has a practice guide for "Addressing Visibility Challenges with #TLS 1.3 within ...
NIST has a practice guide for "Addressing Visibility Challenges with #TLS 1.3 within the Enterprise", discussing "key-management" (control/collect/keep all encryption keys), #middleboxes, and, you know, not encrypting data ("alternative network security protocols where forward secrecy is optional or not supported").
If you have opinions, the public comment period is now open until 2024-04-01...
https://www.nccoe.nist.gov/sites/default/files/2024-01/tls-nist-1800-37b-preliminary-draft.pdfPublished at
2024-01-31 16:33:51Event JSON
{
"id": "c67c669e4458e417ac88eb95915e982676477450ff2d82c7292370ea1c52df17",
"pubkey": "b3087ccfbff4c2e2e16a3af148b6a3a27fe07bb1e7628b714a11e5f26711f263",
"created_at": 1706718831,
"kind": 1,
"tags": [
[
"t",
"middleboxes"
],
[
"t",
"tls"
],
[
"proxy",
"https://mstdn.social/users/jschauma/statuses/111851525370634996",
"activitypub"
]
],
"content": "NIST has a practice guide for \"Addressing Visibility Challenges with #TLS 1.3 within the Enterprise\", discussing \"key-management\" (control/collect/keep all encryption keys), #middleboxes, and, you know, not encrypting data (\"alternative network security protocols where forward secrecy is optional or not supported\").\n\nIf you have opinions, the public comment period is now open until 2024-04-01...\n\nhttps://www.nccoe.nist.gov/sites/default/files/2024-01/tls-nist-1800-37b-preliminary-draft.pdf",
"sig": "a448fc019863c2f55b35bcbcea557ffab74b32e032b9006287cfabcbf2b10baa5abd52f50c223c08aef01b6fc7e8411b99bf0ae60cc6cbdac98ea17ff4568922"
}
