## I expect This section https://github.com/ongov/API-Guidelines/blob/master/API-Guidelines.md#enforce-secure-communication to associate algorithms and key length (eg. RSA - 2048, ECDSA - 256) ## Instead Just defines key length > Sensitive data must be sent over TLS version 1.2 or later, and all certificates must be SHA-256 with a minimum key length of 2048 ## Note A direct link to a table with allowed (algorithms,keys) would be great.
I expect
This section https://github.com/ongov/API-Guidelines/blob/master/API-Guidelines.md#enforce-secure-communication to associate algorithms and key length (eg. RSA - 2048, ECDSA - 256)
Instead
Just defines key length
Note
A direct link to a table with allowed (algorithms,keys) would be great.