TLS renegotiation MITM
Steve Dispensa
dispensa at phonefactor.com
Thu Nov 5 04:53:38 CET 2009
Hi,
A colleague and I have released details of a new attack against TLS in the
area of renegotiation. Information is here:
http://extendedsubset.com/?p=8
During the process of running this bug (and its proposed solution) to
ground, I implemented a patch to GNUTLS, attached. There are also two new
files that implement the extension that solves the problem.
There is lots of background in the above link, but the one missing part is
the Internet Draft that has been tentatively agreed on by most of the major
vendors (pending IETF action, of course). That draft is what I have
implemented, and you should see it posted to the TLS IETF list tomorrow
morning.
I'd be happy to help in any way I can.
Thanks.
-Steve
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ext_safe_renegotiation.c
Type: application/octet-stream
Size: 3381 bytes
Desc: not available
URL: </pipermail/attachments/20091104/19b7058e/attachment.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ext_safe_renegotiation.h
Type: application/octet-stream
Size: 1283 bytes
Desc: not available
URL: </pipermail/attachments/20091104/19b7058e/attachment-0001.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: gnutls-safe-renegotiation.patch
Type: application/octet-stream
Size: 6298 bytes
Desc: not available
URL: </pipermail/attachments/20091104/19b7058e/attachment-0002.obj>
More information about the Gnutls-devel
mailing list