Cool new attack on static (non-EC) Diffie-Hellman in OpenSSL. Takes advantage of a timing vulnerability on the server side to extract the connection pre-master secret. Crypto implementations are hard. https://raccoon-attack.com/
-
-
maybe, but historically it's the stuff of legends. *Graveyards* full of broken dreams from the tiniest sins of incaution.
-
I know! I find that stuff so much more interesting and telling!
- Show replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
