I am not familiar enough with the protocol to answer this question: is it possible for an evil SSL server to send packets such that it ends up with an arbitrary signature from a client? I'm trying to emphasize the importange of keyUsage bits. :) Thanks.
- RE: Malign SSL server attacks rsalz
- RE: Malign SSL server attacks Tim Dierks
- Re: Malign SSL server attacks Eric Murray
- Re: Malign SSL server attacks Rich Salz
