[Cryptography] Fwd: OPENSSL FREAK
Florian Weimer
fw at deneb.enyo.de
Fri Apr 3 15:09:14 EDT 2015
* Ray Dillinger:
> It was a simple idea then, and is still simple. A death note is
> simply a proof that the encryption has been broken,
The trouble here is that most primitives are considered broken well
before a death node can be constructed which could be recognized by a
program written a decade ago. For example, there is wide consensus
not to use HMAC-MD5 or SHA-1, although no concrete proof of their
unsuitability for practical applications has been published.
Something which could be considered a death note for DES arrived much
later than the successful brute-force attacks on it, and a
death-note-checking implementation would still have neeed a lot of
forethought (and a bit of luck).
More information about the cryptography
mailing list