Towards the end of this rather offbeat blog post they describe a
rather clever attack which is possible when the application provides
error messages (i.e. is an error oracle) for PKCS7 padding in e.g. AES
CBC-encrypted web authenticators that allows an adversary to attack
the crypto one octet at a time.
Obama Nation | My emails do not have attachments; it's a digital signature
that your mail program doesn't understand. | 
If you are a spammer, please email to get blacklisted.

Attachment: pgptls3HY1oR9.pgp
Description: PGP signature

Reply via email to