In November 2009, the renegotiation vulnerability over SSL/TLS based protocols was published. SSL renegotiation is a new SSL handshake over an already established SSL connection.
The attacker sits between the client and the server and applies MITM attack. The idea of the attack is as follows:
Read the rest of this entry »
No Comments
Filed under:
Cryptography
