RFC 7465 (prohibition in TLS)

E111854

RFC 7465 is an Internet standards document that formally prohibits the use of the RC4 stream cipher in Transport Layer Security (TLS) due to its significant cryptographic weaknesses.

All labels observed (1)

Label Occurrences
RFC 7465 (prohibition in TLS) canonical 1

How this entity was disambiguated

Statements (41)

Predicate Object
instanceOf IETF RFC
Internet Standards Document
Request for Comments
appliesTo DTLS
TLS 1.0
TLS 1.1
TLS 1.2
area Security
category Standards Track
defines prohibition of RC4-based cipher suites in TLS
focusesOn TLS cipher suites
stream cipher security
intendedAudience TLS implementers
protocol designers
security practitioners
language English
motivatedBy feasibility of plaintext recovery attacks
known biases in RC4 keystream
prohibitsUseIn TLS
TLS clients
TLS servers
TLS
surface form: Transport Layer Security
prohibitsUseOf RC4 stream cipher
surface form: RC4

RC4 stream cipher
publishedBy Internet Engineering Task Force
surface form: IETF

Internet Engineering Task Force
reason practical attacks against RC4 in TLS
significant cryptographic weaknesses in RC4
recommends transition away from RC4-based cipher suites
use of stronger alternative cipher suites
relatedTo TLS security hardening
cryptographic algorithm deprecation
securityConsideration RC4 stream cipher
surface form: RC4 is no longer considered secure for TLS
standardizes industry practice of deprecating RC4 in TLS
status Proposed Standard
subject Internet security
cryptography
network protocols
title Prohibiting RC4 Cipher Suites
updatesProtocol TLS
TLS
surface form: Transport Layer Security

How these facts were elicited

Referenced by (1)

Full triples — surface form annotated when it differs from this entity's canonical label.

RC4 stream cipher standardizedAs RFC 7465 (prohibition in TLS)
subject surface form: RC4