Re: Can wrapped master secret be unwrapped only using fields from sslSessionID structure?

[Eric Rescorla]

This is not the direction want to take, in part because with TLS 1.3 you
will not be able to use the session cache to decrypt the connection.

What you want is SSLKEYLOGFILE.
http://stackoverflow.com/questions/9243842/how-to-reach-used-cipher-key-of-current-ssl-connection-under-firefox

-Ekr


On Sun, Jan 29, 2017 at 8:57 PM, Maxim Rise  wrote:

> On Wednesday, January 25, 2017 at 8:12:59 AM UTC+2, Maxim Rise wrote:
> > I need to know only for current version or older version.
>
> Let's say the NSS version is 3.28. I know the values of the fields from
> sslSessionIDStr.
>
> How can I unwrap the master secret in order to use the unwrapped master
> secret to decrypt a ssl communication using wireshark?
>
> Any advice and suggestions will be greatly appreciated.
> --
> dev-tech-crypto mailing list
> dev-tech-crypto@lists.mozilla.org
> https://lists.mozilla.org/listinfo/dev-tech-crypto
>
-- 
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto

Re: When will TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 cipher suite be available?

[Eric Rescorla]

Eventually, but it's not a very high priority. Is there some reason you
can't use AES-128?

-Ekr

On Mon, Sep 22, 2014 at 4:49 PM, MJBUSCH mikebu...@gmail.com wrote:

 When will TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 cipher suite be
 available?

 I am looking to support websites that are built with this crypto. Only IE
 is supported.

 Thanks
 --
 dev-tech-crypto mailing list
 dev-tech-crypto@lists.mozilla.org
 https://lists.mozilla.org/listinfo/dev-tech-crypto

-- 
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto