99% of all secure websites may be vulnerable

Here is a advisory on the SSL/TLS attack that Juliano Rizzo presented at the ekoparty Security Conference. It appears that 99% of all secure websites in the world that contains a vulnerability that enables a hacker to to do a sucessfull man-in-the-middle attack. These websites are using SSL/TLS 1.0 TLS v1.1 and newer versions don’t have this vulnerability, but are hardly used. The attack is a new fast block-wise chosen-plaintext attack against SSL/TLS 1.0.

~ by petergullberg on November 5, 2011.

Posted in Uncategorized

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Not published)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Cancel

Connecting to %s

	Jeremy Smith on Trust is good for busines…
	petergullberg on Hackers are able to fool POS-t…
	petergullberg on Hackers are able to fool POS-t…
	petergullberg on Researcher at Cambridge Univer…
	Steven Murdoch on Researcher at Cambridge Univer…

Online security