> I am not familiar enough with the protocol to answer this question: > is it possible for an evil SSL server to send packets such that it > ends up with an arbitrary signature from a client? I'm trying to > emphasize the importange of keyUsage bits. :) This is not possible without unreasonable computational power or breaking algorithms; the client makes a contribution to the message which is signed. - Tim
- Malign SSL server attacks rsalz
- Re: Malign SSL server attacks Tim Dierks
- Re: Malign SSL server attacks Eric Murray
- Re: Malign SSL server attacks Rich Salz