On Mon, Oct 3, 2011 at 5:42 PM, Marsh Ray <[email protected]> wrote:

At the risk of feeding the conspiracy angle, I note that there is only one
> stream cipher for SSL/TLS (RC4). All the others in common use are CBC modes,
> with that same predictable IV weakness as IPsec (i.e. BEAST). There are no
> DHE cipher suites defined for RC4. So if you want PFS, you have to accept
> predictable IVs. If you want resistance to BEAST, you have to give up PFS.
>

There's TLS_ECDHE_RSA_WITH_RC4_128_SHA.

Bodo
_______________________________________________
cryptography mailing list
[email protected]
http://lists.randombit.net/mailman/listinfo/cryptography

Reply via email to