RE: Last Call for "XML Encryption 1.1", "XML Encryption 1.1 CipherReference Processing using 2.0 Transforms" to end this Thursday 16 Feb from Cantor, Scott on 2012-02-14 (public-xmlsec@w3.org from February 2012)

From: Cantor, Scott <cantor.2@osu.edu>
Date: Tue, 14 Feb 2012 15:57:29 +0000
To: "Frederick.Hirsch@nokia.com" <Frederick.Hirsch@nokia.com>
CC: "public-xmlsec@w3.org" <public-xmlsec@w3.org>
Message-ID: <BA63CEAE152A7742B854C678D9491383262D85B7@CIO-KRC-D1MBX01.osuad.osu.edu>

> Why wasn't it included, do you know? Seems like that would be helpful to
> have.

Red Hat shipped a while ago, with openssl 1.0. I don't know if the patch was even contributed by the time 1.0 was released, but either way, OpenSSL doesn't really take it as their mission to provide important crypto enhancements to the general community. They're a TLS implementation first and foremost, but despite that, they are a de facto crypto engine for open source whether they want to be or not.

They are prepping a new release to get TLS 1.1 and 1.2 out there, and yet they still won't include GCM. Presumably because TLS simply doesn't need it.

-- Scott

Received on Tuesday, 14 February 2012 15:58:15 UTC