Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Sun, 08 Nov 2009 16:32:05 -0600
From: Marsh Ray <>
To: ArkanoiD <>
Subject: Re: [TLS] CVE-2009-3555 for TLS renegotiation MITM

ArkanoiD wrote:
> BTW renegotiation handshake looks quite similar to initial handshake from
> the client point of view;

Yeah, currently it looks identical.

> is there a way to detect the attack on client side
> and drop the connection?

With draft-rescorla-tls-renegotiate, the new header comes back to the
client on Server Hello, and this notifies the client that the server
believes it's a re-negotation. Even better, it ties it strongly to the
previous session, so legit renegotiations are protected, too.

- Marsh

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.