On 2009-08-20 00:43 PDT, Justin wells wrote:
> Plainly my question remains unanswered: How do I learn what protocol
> was ACTUALLY used by firefox to exchange keys?
The answer involves the terms "pre-master secret" and "master secret"
defined in that RFC.
Ask yourself this question:
Does the si
Justin makes some valid points.
Risk-management in the future is going to increasingly be about
transparency and disclosure. As long as Firefox and Thunderbird
provide information about the strengths of different keys in
the SSL/TLS negotiation, Mozilla will be advancing the cause of
better risk
Hi Ian,
Thanks for your reply! It's very enlightening, and I do agree that in
the real world there are a lot of issues other than the cryptographic
issues. Just to be sure, I am not suggesting that the weakest link
should be as strong as the strongest link. I am just trying to
understand how weak
Hi there,
I am having trouble decoding a custom extension that I created using
Openssl. I have created the templates for nss but I am receiving a
"bad der" error number from the decoder. As far as I can tell the der
is correct and can be parsed by openssl commands that show the
structure is as exp
Nelson B Bolyard wrote:
On 2009-08-19 15:12 PDT, David Keeler wrote:
Wan-Teh Chang wrote:
I think "rsa encryption" is a public key algorithm, where as
"sha1 with rsa encryption" is a signature algorithm.
Thank you for the quick response. This isn't quite what I was getting
at, though. I gues
On 19/08/2009 20:30, Justin wells wrote:
Plainly the concern is that 256 bit AES does you no good if they AES
keys were exchanged insecurely. The security of the connection is the
lesser of the security of the content encryption, and the security of
the key agreement protocol
Yes, this is
Right, so from that RFC:
"Note that higher layers should not be overly reliant on TLS always
negotiating the strongest possible connection between two peers:
there are a number of ways a man in the middle attacker can attempt
to make two entities drop down to the least secure method they
7 matches
Mail list logo
