[Cryptography] Fwd: OPENSSL FREAK
Christian Huitema
huitema at huitema.net
Sun Apr 5 13:03:33 EDT 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> Backward compatibility is just a name for downgrade attacks that
> haven't cost enough money to stop yet.
Engineering is about tradeoff. That includes balancing immediate cost and future risk. Automated kill switches negate that. They only make sense if the risk is so high that there is no possible balancing. How often have we seen that?
- -- Christian Huitema
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.15 (MingW32)
Comment: Using gpg4o v3.4.103.5490 - http://www.gpg4o.com/
Charset: utf-8
iQEcBAEBAgAGBQJVIWrlAAoJELba05IUOHVQkQQH/jTzyzQpiYrehKu9pSTXPT0F
dyfdsnVWMhjUJUfc0NEdPqs3Q9Fdngyh4ZGA+S/PvZF4kRKYYN/sLGNi9Ez0w70e
pQnqjFxbefb7JxPYHBm0bNihfAF3OdflurmKq9slMcA7tY02Y2RwWhHpDs04Wd91
PU4bHGILUGFhHJeelMDDbTqhTq715rnE1Ptf19WV3hdPTeshdRB8lbPd4PR19ZR8
H2kmGKo/5B//T35xY1LqJ5yYdigyjvZHPhQQa7uzIcZRG2htTON94k05+fAxxPsU
XkFlGMKfPDiL5fkhm1LA4egew+Iitm4TJ52/IwV+egu2aLgR91gdUpYIBYiBrUI=
=QDbW
-----END PGP SIGNATURE-----
More information about the cryptography
mailing list