On Mon, Oct 3, 2011 at 5:42 PM, Marsh Ray <[email protected]> wrote:
At the risk of feeding the conspiracy angle, I note that there is only one > stream cipher for SSL/TLS (RC4). All the others in common use are CBC modes, > with that same predictable IV weakness as IPsec (i.e. BEAST). There are no > DHE cipher suites defined for RC4. So if you want PFS, you have to accept > predictable IVs. If you want resistance to BEAST, you have to give up PFS. > There's TLS_ECDHE_RSA_WITH_RC4_128_SHA. Bodo
_______________________________________________ cryptography mailing list [email protected] http://lists.randombit.net/mailman/listinfo/cryptography
