Security/Server Side TLS: Difference between revisions

Jump to navigation Jump to search

Security/Server Side TLS (view source)

Revision as of 13:40, 15 October 2013

1 byte added ,  15 October 2013
m
→‎BEAST CVE-2011-3389
Line 466: Line 466:
=== BEAST CVE-2011-3389 ===
=== BEAST CVE-2011-3389 ===


Beast is a vulnerability in the Initialization Vector (IV) of the CBC mode of AES, Camellia and a few other ciphers that use CBC mode. The attack allows a  MITM attacker to recover plaintext values by encrypted the same message multiple times.
Beast is a vulnerability in the Initialization Vector (IV) of the CBC mode of AES, Camellia and a few other ciphers that use CBC mode. The attack allows a  MITM attacker to recover plaintext values by encrypting the same message multiple times.


BEAST is mitigated in TLS1.1 and above.
BEAST is mitigated in TLS1.1 and above.
Ulfr
Confirmed users
529

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/729138"

Navigation menu