@radioctiveeucom @SwiftOnSecurity That doesn't cover the protocol flaw that makes it possible, though. That's what I was interested in.
-
-
@RichFelker @radioctiveeucom yeah that's what I was assumingThanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@RichFelker @radioctiveeucom@SwiftOnSecurity you can't authenticate DH without a PSK or PKI. -
@sschinke @radioctiveeucom@SwiftOnSecurity Inability to authenticate DH without PSK/PKI only admits active attacks, not passive ones. -
@RichFelker @radioctiveeucom@SwiftOnSecurity Right. Which is why it isn't sufficient for WiFi. -
@RichFelker @radioctiveeucom@SwiftOnSecurity If I can broadcast stronger than you and the AP, or get between you, I can MITM otherwise.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.