Security Wire Weekly

Feb 25 2009   11:10PM GMT

Attacks against SSL

Jessica Scarpati Jessica Scarpati Profile: Jessica Scarpati

Cryptography expert Taher Elgamal of Axway Inc. defends SSL in the wake of research that bypasses it. Elgamal’s research led to the development of SSL.

1  Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.
  • shire_stalker
    A fascinating conversation about the birth and development of ssl, and how it might have lost its way. I find it very interesting that while there have been a few updates to SSL technology -- such as bidding good riddance to the MD5 hash -- most have simply been aesthetic or administrative changes to attempt to focus more on that secure connection between two points (ie, reducing the chance of MITM). I'm thinking particularly of EV SSL, which boasts a more robust vetting process from the CA and the "unspoofable" green url bar -- which are really just attempts to allow good ol' SSL to do its job with more efficiency. And I agree that it's occasionally over-sold as a data protector, but the sheer number of phishing scams exploiting unknowledgeable users out there suggests that most folks aren't quite sure what SSL does or how to recognize that it's doing its job. Hopefully shifts in the technology (EV SSL included) will help remedy that.
    0 pointsBadges:

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: