[Cryptography] It's GnuTLS's turn: "Critical new bug in crypto library leaves Linux, apps open to drive-by attacks"
Theodore Ts'o
tytso at mit.edu
Tue Jun 3 18:14:17 EDT 2014
On Tue, Jun 03, 2014 at 05:55:51PM -0400, Jerry Leichter wrote:
> This is the "lemon market" problem that Ross Anderson refers to in
> the paper I sent a link to earlier today.
Ross references the paper and mentions the problem in passing, but the
citation he gives goes into much more detail, and is worth reading:
http://www.heinz.cmu.edu/~acquisti/shb/SHB11BaddeleyFinal.pdf
- Ted
More information about the cryptography
mailing list