Hide Forgot
Google has started forward secrecy via ECDHE for https, see: http://googleonlinesecurity.blogspot.com/2011/11/protecting-data-for-long-term-with.html http://www.imperialviolet.org/2011/11/22/forwardsecret.html This requires an updated openssl supporting ECDHE: http://cvs.openssl.org/fileview?f=openssl%2FCHANGES&v=1.1481.2.56.2.57 Upgrade to openssl 1.0.1 in order to support this.
We will upgrade to openssl-1.0.1 as soon as it is released. However we will not support ECDHE due to possible patent concerns anyway. Forward secrecy is possible also with the DHE algorithms however they probably will not be supported by high access sites due to the increased load of the DHE.