[Cryptography] Fwd: OPENSSL FREAK

Ray Dillinger bear at sonic.net
Sat Apr 4 22:12:54 EDT 2015

On 04/04/2015 06:13 PM, Salz, Rich wrote:
>> Of course the drawback is that you have to trust at least a little bit that the
>> destruction asserted actually occurred.
> And you want to put this in a kill switch?
> With what possibility of widespread collateral damage?
> I work at Akamai Technologies and am a member of the OpenSSL development team.  No way this is happening while I have any say.

Backward compatibility is just a name for downgrade attacks that
haven't cost enough money to stop yet.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20150404/ff6164ec/attachment.sig>

More information about the cryptography mailing list