L. David Baron @dbaron@w3c.social · Feb 24, 2017 · 7:31 AM UTC

L. David Baron @dbaron@w3c.social @davidbaron

24 Feb 2017

Dropped ciphersuites with SHA1 from dbaron.org/ which ssllabs.com/ssltest/analyze.… suggests (newly) breaks only IE11/Win Phone 8.1.

L. David Baron @dbaron@w3c.social · Feb 24, 2017 · 7:34 AM UTC

L. David Baron @dbaron@w3c.social · Feb 24, 2017 · 7:34 AM UTC

L. David Baron @dbaron@w3c.social @davidbaron

24 Feb 2017

I haven't seen much commentary on what today's SHA1 news implies about HMACs using SHA1, but figured it was about time to disable it anyway.

Feb 24, 2017 · 7:34 AM UTC

L. David Baron @dbaron@w3c.social · Feb 24, 2017 · 7:51 AM UTC

L. David Baron @dbaron@w3c.social @davidbaron

24 Feb 2017

Next step (for later) is dropping non-AEAD ciphersuites (i.e., CBC-mode), and thus un-supporting Safari 6 (iOS) and Safari 7-8 (iOS & Mac).

zack wol berg (account no longer used) · Feb 24, 2017 · 1:10 PM UTC

zack wol berg (account no longer used) @elwoz

24 Feb 2017

Replying to @davidbaron

HMAC-SHA1 is still fine; adversary would need the MAC secret to carry out the same attack.