Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

BEAST attack #2

Closed
hannesm opened this issue Mar 3, 2014 · 3 comments
Closed

BEAST attack #2

hannesm opened this issue Mar 3, 2014 · 3 comments
Labels
security concern

Comments

@hannesm
Copy link
Member

hannesm commented Mar 3, 2014

problem: CBC in TLS uses a static IV

solution: randomize IV by always sending an empty application data record before any with payload

references:
@hannesm hannesm mentioned this issue Mar 3, 2014
Closed
@hannesm
Copy link
Member Author

hannesm commented Apr 1, 2014

mitigation in #37

@hannesm
Copy link
Member Author

hannesm commented Apr 11, 2014

I am convinced this problem is solved in our stack. It would be great to have another pair of eyes looking over it and commenting here..

pqwy added a commit that referenced this issue May 4, 2014
@pqwy
reuse #2
a2d597b
pqwy added a commit that referenced this issue May 13, 2014
@pqwy
clean pass #2
74e557c
pqwy added a commit that referenced this issue May 29, 2014
@pqwy
clean pass #2
63349e1
@pqwy
Copy link
Contributor

pqwy commented Jul 7, 2014

Every vector of appdata records has an empty one prepended on send, in CBC.

Looks legit.

@pqwy pqwy closed this as completed Jul 7, 2014
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
security concern
Milestone
No milestone
Development

No branches or pull requests
2 participants
@hannesm @pqwy