Ouch: invalid curve attacks against ECC in TLS. http://web-in-security.blogspot.ca/2015/09/practical-invalid-curve-attacks.html …
@andreasdotorg @stribika Why is this even an issue? The secret is never supposed to be reused. *sigh* misuse of DH.
-
-
@RichFelker@stribika ECDH vs. ECDHE, essentially.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@stribika@andreasdotorg Because people want to exchange your (and their) security/privacy for their cpu cycles...Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.