mbedtls/remove-enable-weak-ciphersuites.md at 07a30c4c009e192e35d63b22088ad65516beaee7

mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-11-03 20:33:16 +03:00

Files

Ronald Cron d5d04962ef Add change log and migration guide

Signed-off-by: Ronald Cron <ronald.cron@arm.com>

2021-05-04 15:59:10 +02:00

573 B

Raw Blame History

Remove the configuration to enable weak ciphersuites in SSL / TLS

This does not affect users who use the default config.h, as this option was already off by default.

If you were using a weak cipher, please switch to any of the modern, recommended ciphersuites (based on AES-GCM, AES-CCM or ChachaPoly for example) and if your peer doesn't support any, encourage them to upgrade their software.

If you were using a ciphersuite without encryption, you just have to enable MBEDTLS_CIPHER_NULL_CIPHER now.

573 B Raw Blame History

Remove the configuration to enable weak ciphersuites in SSL / TLS

573 B

Raw Blame History