Also would anyone know if the the implicit IV specified in tls1.0 has been replaced (or is going to be ) with an
explicit IV to protect against CBC attacks?
Many thanks,
Brandt
________________________________
From: Brandt Springman
Sent: 29 January 2010 17:24
To: '[email protected]'
Subject: P_SHA256
Does anyone know if the OpenSSL now uses the P_SHA256 PRF to replace the
MD5/SHA-1 combination?.
Brandt
