50 Add mandatory support for extended master secret extension (RFC 7627) to TLS 1.2Created: 05 Jul 2024 Status: Discussion (red) Part: Part 3 (2023, Edition 2) Links: Page: 1 Clause: 1 Paragraph: 1 Issue RFC 7627 seems highly relevant for embedded devices in power systems due to their reliance on long-lived TLS 1.2 sessions. Implementing the Extended Master Secret extension could help to prevent MITM attacks by ensuring that the session keys are uniquely bound to the initial handshake. Proposal Evaluate mandating support for RFC 7627 extended master secret for TLS 1.2 implementations.
Privacy | Contact | Disclaimer Tissue DB v. 24.12.6.1 |