[Issue Unconfirmed] The TLS requirements in section 10 incorrectly specify required cipher suites. The TLS specs already do this satisfactorily and handle deprecation/obsoletion of insecure suites such as those in section 10. Link: http://www.pwg.org/issues/20