ECDHE
TLS 1.0/1.1/1.2で使うこともできる? RFC 8422
RSAの鍵も変換して利用できるらしい
ECDHは鍵が漏洩すると以前のセッションも脆弱になるが、ECDHEでは鍵を都度生成するため過去のセッションは安全、らしい ECDHE_ECDSA
ECDHE_RSA
ECDHE_PSK
RFC 8442 ECDHE_PSK with AES-GCM and AES-CCM Cipher Suites for TLS 1.2 and DTLS 1.2
RFC 8422 Elliptic Curve Cryptography (ECC) Cipher Suites for Transport Layer Security (TLS) Versions 1.2 and Earlier
ECDHE_ECDSA
ECDHE_RSA
RFC 5489 ECDHE_PSK Cipher Suites for Transport Layer Security (TLS)
RFC 5487 Pre-Shared Key Cipher Suites for TLS with SHA-256/384 and AES Galois Counter Mode
RFC 4785
RFC 4492 Elliptic Curve Cryptography (ECC) Cipher Suites for Transport Layer Security (TLS) → 8422
RFC 4279 Pre-Shared Key Ciphersuites for Transport Layer Security (TLS)