Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: SSL protocol flaw, request for opinions

From: Gayle Shipp <gayle () shipps us>
Date: Sat, 22 Feb 2003 17:20:06 -0800
The best, albeit brief, explanation I've seen is this one. http://www.bizreport.com/article.php?art_id=4182 It has had some interesting quotes by Bruce Schneier, computer security expert and author. I suspect he'll also address it next month in his monthly Crypto-gram (which is a great newsletter if you don't subscribe -- http://www.counterpane.com/crypto-gram.html). 

Regards...

~~Gayle

At 09:46 PM 2/20/2003 -1000, Juan Velasquez wrote:
I just read this story which explains how the Swiss Federal Institute of Technology exploited a flaw in the SSL protocol to hijack an 8 character password from a bunch of SSL encrypted email logins. 
I was surprised. What does the security community think of this?

http://www.newscientist.com/news/news.jsp?id=ns99993420


--

Juan Velasquez
Juan () EvolutionhH com
Previous By Date Next
Previous By Thread Next

Current thread: