RFC 9155
Deprecating MD5 and SHA-1 Signature Hashes in TLS 1.2 and DTLS 1.2, December 2021
- File formats:
- Also available: XML file for editing
- Status:
- PROPOSED STANDARD
- Updates:
- RFC 5246
- Authors:
- L. Velvindron
K. Moriarty
A. Ghedini - Stream:
- IETF
- Source:
- tls (sec)
Cite this RFC: TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC9155
Discuss this RFC: Send questions or comments to the mailing list tls@ietf.org
Other actions: Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 9155
Abstract
The MD5 and SHA-1 hashing algorithms are increasingly vulnerable to attack, and this document deprecates their use in TLS 1.2 and DTLS 1.2 digital signatures. However, this document does not deprecate SHA-1 with Hashed Message Authentication Code (HMAC), as used in record protection. This document updates RFC 5246.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.