[Cryptography] Fwd: OPENSSL FREAK

Florian Weimer fw at deneb.enyo.de
Fri Apr 3 15:09:14 EDT 2015

* Ray Dillinger:

> It was a simple idea then, and is still simple.  A death note is
> simply a proof that the encryption has been broken,

The trouble here is that most primitives are considered broken well
before a death node can be constructed which could be recognized by a
program written a decade ago.  For example, there is wide consensus
not to use HMAC-MD5 or SHA-1, although no concrete proof of their
unsuitability for practical applications has been published.
Something which could be considered a death note for DES arrived much
later than the successful brute-force attacks on it, and a
death-note-checking implementation would still have neeed a lot of
forethought (and a bit of luck).

More information about the cryptography mailing list