Re: TLS renegotiation MITM

gnutls-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: TLS renegotiation MITM

From:	Steve Dispensa
Subject:	Re: TLS renegotiation MITM
Date:	Thu, 5 Nov 2009 19:24:31 -0600

Yes, I'd be glad to. It will take me a couple of days to get to aprinter/scanner, but meanwhile, if an email can do this, take this asmy official intent to assign copyright to fsf.


 -Steve

On Nov 5, 2009, at 3:03 PM, "Nikos Mavrogiannopoulos"<address@hidden> wrote:

Steve Dispensa wrote:
Hi,
A colleague and I have released details of a new attack against TLSin the
area of renegotiation. Information is here:

http://extendedsubset.com/?p=8

During the process of running this bug (and its proposed solution) to
ground, I implemented a patch to GNUTLS, attached. There are alsotwo new
files that implement the extension that solves the problem.
There is lots of background in the above link, but the one missingpart isthe Internet Draft that has been tentatively agreed on by most ofthe major
vendors (pending IETF action, of course). That draft is what I have
implemented, and you should see it posted to the TLS IETF listtomorrow
morning.
Hi thank you for the patch and for identifying the issue as well. Ilike
both your patch and the fix itself. Would you be interested in signing
the copyright assignment papers for FSF?

best regards,
Nikos

[Prev in Thread]

Current Thread

[Next in Thread]

TLS renegotiation MITM, Steve Dispensa, 2009/11/04
- Re: TLS renegotiation MITM, Nikos Mavrogiannopoulos, 2009/11/05
  - Re: TLS renegotiation MITM, Steve Dispensa <=
- Re: TLS renegotiation MITM, Simon Josefsson, 2009/11/06
  - Re: TLS renegotiation MITM, Steve Dispensa, 2009/11/06
    - Re: TLS renegotiation MITM, Simon Josefsson, 2009/11/06

Prev by Date: Re: Running "make check" under valgrind
Next by Date: Re: Running "make check" under valgrind
Previous by thread: Re: TLS renegotiation MITM
Next by thread: Re: TLS renegotiation MITM
Index(es):
- Date
- Thread