7
edits
Changes
m
→Control: grammar: typo from previous disambiguation
In order to clarify why this distinction is relevant, let's repeat one property of the attack scenarios using the old protocol versions:
The attack requires a renegotiation. However, a renegotiation may happen between a MITM and a server, while the Mozilla client is under the impression that the connection it is still at the stage of the initial negotiation.
Only the use of the new protocol versions on both sides of a connection can clarify this and ascertain to be safe against the attack.