<html><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;" class="">And (most of the time) they are also ahead of all nice BSI/NIST documents…  <div class="">Like for example Google with it’s shift to Cacha20-Poly1305, DNS over TLS, QUIC, etc.  ;-)<div class=""><div class=""><span style="caret-color: rgb(0, 0, 0); color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; orphans: auto; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; widows: auto; word-spacing: 0px; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; text-decoration: none;"><span style="color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px;"><span><span><span style="color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px;"><span><span><span><span><span><span style="color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px;"><span><span><span><span><span><span><span><br class="Apple-interchange-newline" style="caret-color: rgb(0, 0, 0); color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; orphans: auto; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; widows: auto; word-spacing: 0px; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; text-decoration: none;">
</span></span></span></span></span></span></span></span></span></span></span></span></span></span></span></span></span></span></div>
<div><br class=""><blockquote type="cite" class=""><div class="">Am 12.10.2018 um 18:34 schrieb Dominic Schallert <<a href="mailto:ds@schallert.com" class="">ds@schallert.com</a>>:</div><br class="Apple-interchange-newline"><div class=""><meta http-equiv="Content-Type" content="text/html; charset=utf-8" class=""><div style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;" class=""><div class="">Hi Rene,</div><div class=""><br class=""><blockquote type="cite" class=""><div class=""><div class=""><div class="protected-part"><div class="protected-content">I have noticed quite the contrary. TLS v1.0 and TLS v1.1 is still in use,<br class="">even TLS v1.2 - many years after the standards were being published.<br class="">Adoption is very slow. I am sure that TLS v1.3 implementation will take a<br class="">couple of years.</div></div></div></div></blockquote><blockquote type="cite" class=""><div class=""><div class=""><div class="protected-part"><div class="protected-content">This being said, yes, the best practices and recommendations change, but<br class="">not as often as people buy new clients. The ACH guide is still valid for<br class="">most configurations.<br class=""></div></div></div></div></blockquote><div class=""><br class=""></div><div class="">That’s the problem. There are some driving forces like Google[1], </div><div class="">Github[2] or Cloudflare[3] which usually are light-years ahead of the</div><div class="">majority of other companies. Generally it’s very safe to say that what</div><div class="">these companies do, can be considered as current best practice.</div><div class=""><br class=""></div><div class="">Just to give a few examples..</div><div class=""><br class=""></div><div class="">[1] <font color="#419cff" class=""><span style="caret-color: rgb(65, 156, 255);" class=""><u class=""><a href="https://tools.ietf.org/html/rfc7905" class="">https://tools.ietf.org/html/rfc7905</a></u></span></font></div><div class="">[2] <a href="https://githubengineering.com/crypto-removal-notice/" class="">https://githubengineering.com/crypto-removal-notice/</a> </div><div class="">[3] <a href="https://blog.cloudflare.com/introducing-tls-1-3/" class="">https://blog.cloudflare.com/introducing-tls-1-3/</a> </div><div class=""><br class=""></div><div class="">Cheers</div><div class="">Dominic</div></div></div></div></blockquote></div><br class=""></div></div></body></html>