[cryptography] ssl/tls splicing attack

Kevin W. Wall kevin.w.wall at gmail.com
Wed Mar 17 17:45:07 EDT 2010

James A. Donald wrote:
> ...<snip>...
> If any of us were consulted on wifi,
> would we have allowed an offline dictionary attack?  Wifi have had
> three tries, or four, depending on how you count, and still have not
> got wifi right, though most of us could have done it right easily.

Hey, come on now. Let's not be too hard on them. IEEE did the best
they could, having to be backward compatible with all the previous
vulnerabilities from earlier versions. ;-)

Kevin W. Wall
"The most likely way for the world to be destroyed, most experts agree,
is by accident. That's where we come in; we're computer professionals.
We cause accidents."        -- Nathaniel Borenstein, co-creator of MIME

More information about the cryptography mailing list