[webkit-dev] Request for position: Removing 3DES from TLS
Alex Christensen
achristensen at apple.com
Wed Apr 28 08:21:05 PDT 2021
Your measurement of 0.00% use in Chrome is exciting.
Making this change would almost certainly not be a change in WebKit but I’ve reached out to the people who manage our crypto code.
> On Apr 28, 2021, at 7:14 AM, Michael Catanzaro via webkit-dev <webkit-dev at lists.webkit.org> wrote:
>
>
> Looks like this change is clearly safe.
>
> I doubt Safari controls its own TLS ciphersuite settings. In WebKitGTK, they're controlled by the operating system's TLS backend and crypto policy. 3DES has been disabled for a while now on modern systems, and users have not reported any compat issues, which is not surprising given your finding of 0.00%.
>
> Michael
>
>
> _______________________________________________
> webkit-dev mailing list
> webkit-dev at lists.webkit.org
> https://lists.webkit.org/mailman/listinfo/webkit-dev
More information about the webkit-dev
mailing list