[Ach] Firefox 27.0 now supports TLS 1.1 and 1.2

Kurt Roeckx kurt at roeckx.be
Thu Feb 6 22:41:48 CET 2014

On Thu, Feb 06, 2014 at 10:19:42PM +0100, Aaron Zauner wrote:
> Well. Not true. You can get AES-GCM also with non-ephemeral handshakes.
> ECDSA is prefered because the computational overhead is very small in
> comparison to DHE (which none of the larger web platforms will use, because
> it'll kill their servers with serious real-life traffic at hand). Didn't I
> say so a couple of months back? Nobody will use DHE and people will
> complain on the list (as they did)  :)

I think he's talkign about ECDHE_ECDSA before ECDHE_RSA, not ECDHE
before DHE.


More information about the Ach mailing list