nanog mailing list archives

Re: Security team successfully cracks SSL using 200 PS3's and MD5

From: Neil <kngspook () gmail com>
Date: Fri, 2 Jan 2009 15:37:51 -0800

On Fri, Jan 2, 2009 at 3:29 PM, Joe Greco <jgreco () ns sol net> wrote:

* Joe Greco:

[snip

Either we take the potential for transparent MitM attacks seriously, or
we do not.  I'm sure the NSA would prefer "not."  :-)


I doubt the NSA is interested in MITM attacks which can be spotted by
comparing key material. 8-)


Doubting that the NSA might be interested in any given technique is, of
course, good for the NSA.  Our national security people have been known
to use imperfect interception technologies when it suits the task at hand.
Do people here really so quickly forget things?  There was a talk on
Carnivore given in 2000 at NANOG 20, IIRC, and I believe that one of the
instigating causes of that talk was problems that Earthlink had experienced
when the FBI had deployed Carnivore there.


Naturally.  The NSA isn't filled with theorists who want to get the
job done the "right" way.  They have a mission to fulfill, and they'll
use whatever tool works to get it done.

Current thread:

Re: Security team successfully cracks SSL using 200 PS3's and MD5, (continued)
- - - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Dorn Hetzel (Jan 03)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Marshall Eubanks (Jan 03)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Steven M. Bellovin (Jan 03)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Christopher Morrow (Jan 03)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Steven M. Bellovin (Jan 03)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Nick Hilliard (Jan 03)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Florian Weimer (Jan 03)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Christopher Morrow (Jan 03)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Florian Weimer (Jan 02)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Joe Greco (Jan 02)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Neil (Jan 02)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Etaoin Shrdlu (Jan 02)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Joe Greco (Jan 02)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Brian Keefer (Jan 02)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Florian Weimer (Jan 03)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Joe Greco (Jan 04)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Brian Keefer (Jan 04)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Joe Greco (Jan 04)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Valdis . Kletnieks (Jan 04)
    - Re: Security team successfully cracks SSL using 200 PS3's and MD5 Florian Weimer (Jan 03)
- Re: Security team successfully cracks SSL using 200 PS3's and MD5 flaw. Joe Abley (Jan 02)

(Thread continues...)