openid / connect / issues / #1159 - TLS requirements/recommendations for OP/RP — Bitbucket

Issue #1159 resolved

Joseph Heenan created an issue 2020-02-26

Does the WG have a position on whether TLS 1.2 support is generally recommended / required for OP/RPs?

(Particularly from the angle of whether the certification tests should make any tests in this area. The core certification tests currently don’t as discussed at https://gitlab.com/openid/conformance-suite/-/merge_requests/865#note_289042502 )

The text in the latest standard mentions that ‘at the time of writing TLS 1.2 is not widely deployed’ (https://bitbucket.org/openid/connect/src/default/openid-connect-core-1_0.xml#lines-6889) - I guess perhaps this text could be updated as part of the impending errata update?

Comments (5)

Michael Jones
- assigned issue to
  
  Michael Jones
- changed milestone to Errata
I will update this text to reflect present realities.
- 2020-03-12T14:56:25+00:00
Nat Sakimura
- changed status to open
- 2021-06-15T00:11:10+00:00
Michael Jones
- changed component to All
- 2023-07-28T22:54:02+00:00
Michael Jones
Will be fixed by https://bitbucket.org/openid/connect/pull-requests/591/errata-use-tls-guidance-from-bcp-195
- 2023-08-05T01:55:15+00:00
Michael Jones
- changed status to resolved
https://bitbucket.org/openid/connect/pull-requests/591 merged
- 2023-08-13T19:46:07+00:00
Log in to comment

Assignee: Michael Jones

Type: bug

Priority: major

Status: resolved

Component: All

Milestone: Errata

Version: –

Votes: 0

Watchers: 0

Jira: the preferred issue tracker for Bitbucket. Join the team!