X-Git-Url: https://git.openssl.org/gitweb/?p=openssl.git;a=blobdiff_plain;f=CHANGES;h=592b6154c1baa932360fe8cfa19e065ecad7dac5;hp=ff8201a9a1c9337a77812ca5ad881145b7227c8a;hb=bce1af776247fee153223ea156228810779483ce;hpb=086e32a6c7df4588834bc4d033a00382fd313b58

diff --git a/CHANGES b/CHANGES
index ff8201a9a1..592b6154c1 100644
--- a/CHANGES
+++ b/CHANGES
@@ -4,6 +4,25 @@
 
  Changes between 1.0.1 and 1.1.0  [xx XXX xxxx]
 
+  *) Output TLS supported curves in preference order instead of numerical
+     order. This is currently hardcoded for the highest order curves first.
+     This should be configurable so applications can judge speed vs strength.
+     [Steve Henson]
+
+  *) Add protection against ECDSA timing attacks as mentioned in the paper
+     by Billy Bob Brumley and Nicola Tuveri, see:
+
+	http://eprint.iacr.org/2011/232.pdf
+
+     [Billy Bob Brumley and Nicola Tuveri]
+
+  *) Add TLS v1.2 server support for client authentication. 
+     [Steve Henson]
+
+  *) Add support for FIPS mode in ssl library: disable SSLv3, non-FIPS ciphers
+     and enable MD5.
+     [Steve Henson]
+
   *) Functions FIPS_mode_set() and FIPS_mode() which call the underlying
      FIPS modules versions.
      [Steve Henson]