Appendix B. Differences from RFC 4492

• Renamed EllipticCurveList to NamedCurveList.

• Added TLS 1.2.

• Merged errata.

• Removed the ECDH key exchange algorithms: ECDH_RSA and ECDH_ECDSA

• Deprecated a bunch of ciphersuites:

  • TLS_ECDH_ECDSA_WITH_NULL_SHA
  • TLS_ECDH_ECDSA_WITH_RC4_128_SHA
  • TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
  • TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA
  • TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA
  • TLS_ECDH_RSA_WITH_NULL_SHA
  • TLS_ECDH_RSA_WITH_RC4_128_SHA
  • TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
  • TLS_ECDH_RSA_WITH_AES_128_CBC_SHA
  • TLS_ECDH_RSA_WITH_AES_256_CBC_SHA
  • All the other RC4 ciphersuites

• Removed unused curves and all but the uncompressed point format.

• Added X25519 and X448.

• Deprecated explicit curves.

• Removed restriction on signature algorithm in certificate.