Another SSL AttackSecurity
A short time ago I mentioned the vulnerability in certificates that are signed with MD5. Well I have just finished watching the presentation from Blackhat DC 2009 that details a different attack on SSL. Its a very simple attack and the take away here is that you don’t have to defeat SSL to defeat SSL!
Edit: There is a five minute chat with the presenter on you tube here
OSGcomments powered by Disqus