tls beast, tls v1, tls v1.2http://isc.sans.org/diary/TLS+1+2+-+Look+before+you+Leap+/11629 Good info about what can and will be done in the current state of things and what is capable of running what version of TLS.
0 Comments
RSS Feed
Email a friend
tls beast, tls hack, tls v1 vulnerability, tls vulnerabilityThe basic premise of the attack that BEAST will preform is a chosen plain text attack. A chosen plain text is a type of crypto attack that the attacker is in a position to feed text in to the cypher then analyze the output. This allows the attacker to gain a good understanding of the crypto...
0 Comments
RSS Feed
Email a friend
tls beast, tls hack, tls v1 vulnerability, tls vulnerabilityhttp://www.cbc.ca/news/technology/story/2011/09/20/technology-tls-encryption-attack.html A working tool to exploit TLS v1 will be release this Friday (Sept 23rd). Major browser vendors have been warned already. I have done some spot checking and found a few secure sites I use are on v1...
0 Comments
RSS Feed
Email a friend
digital forensics, digital forensics exam, digital forensics test, giac gcfaI got a new cert last week, which is the explanation for my lack of posting so far this month. I am now a GIAC GCFA, http://www.giac.org/certification/certified-forensic-analyst-gcfa . The course with the cert is...
0 Comments
RSS Feed
Email a friend
