The best, albeit brief, explanation I've seen is this one.
http://www.bizreport.com/article.php?art_id=4182 It has had some
interesting quotes by Bruce Schneier, computer security expert and author.
I suspect he'll also address it next month in his monthly Crypto-gram
(which is a great
Velasquez [mailto:[EMAIL PROTECTED]
Sent: Friday, 21 February 2003 3:46 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: SSL protocol flaw, request for opinions
I just read this story which explains how the Swiss Federal Institute of
Technology
exploited a flaw in the SSL protocol to hijack an 8
Juan Velasquez wrote:
I just read this story which explains how the Swiss Federal Institute of
Technology
exploited a flaw in the SSL protocol to hijack an 8 character password
from a bunch of SSL encrypted email logins.
I was surprised. What does the security community think of this?
Please read the below article for further details of
the SSL issue:
http://slashdot.org/articles/03/02/20/1956229.shtml?tid=93tid=172
Naveen Maram.
--- Juan Velasquez [EMAIL PROTECTED] wrote:
I just read this story which explains how the Swiss
Federal Institute of
Technology
exploited a
I just read this story which explains how the Swiss Federal Institute of
Technology
exploited a flaw in the SSL protocol to hijack an 8 character password
from a bunch of SSL encrypted email logins.
I was surprised. What does the security community think of this?