{
  "draft": "draft-ietf-tls-deprecate-obsolete-kex-08",
  "doc_id": "RFC10015",
  "title": "Deprecating Obsolete Key Exchange Methods in TLS 1.2 and DTLS 1.2",
  "authors": [
    "N. Aviram"
  ],
  "format": [
    "XML",
    "TEXT",
    "HTML",
    "PDF"
  ],
  "page_count": "21",
  "pub_status": "PROPOSED STANDARD",
  "status": "PROPOSED STANDARD",
  "source": "Transport Layer Security",
  "abstract": "For (D)TLS 1.2, this document deprecates the use of two key exchanges, namely Diffie-Hellman (DH) over a finite field and RSA. It also discourages the use of static Elliptic Curve Diffie-Hellman (ECDH) cipher suites.\n\nThese prescriptions apply only to (D)TLS 1.2, since (D)TLS 1.0 and TLS 1.1 are deprecated by RFC 8996 and (D)TLS 1.3 either does not use the affected algorithms or does not share the relevant configuration options. (There is no DTLS version 1.1.)\n\nThis document updates RFCs 4162, 4279, 4346, 4785, 5246, 5288, 5289, 5469, 5487, 5932, 6209, 6347, 6367, 6655, 7905, 8422, and 9325 to either deprecate or discourage the use of cipher suites using the above key exchange methods in (D)TLS 1.2 connections.",
  "pub_date": "July 2026",
  "keywords": [
    "RSA",
    "Diffie-Hellman",
    "DH",
    "DHE",
    "ECDH",
    "ECDHE"
  ],
  "obsoletes": [],
  "obsoleted_by": [],
  "updates": [
    "RFC4162",
    "RFC4279",
    "RFC4346",
    "RFC4785",
    "RFC5246",
    "RFC5288",
    "RFC5289",
    "RFC5469",
    "RFC5487",
    "RFC5932",
    "RFC6209",
    "RFC6347",
    "RFC6367",
    "RFC6655",
    "RFC7905",
    "RFC8422",
    "RFC9325"
  ],
  "updated_by": [],
  "see_also": [],
  "doi": "10.17487/RFC10015",
  "errata_url": null
}