raghuram belur wrote:
>
> Unfortunately, requesting input from the user is not
> an option for the application that I am working on.
> This is one of the reasons why I am trying to see if
> there is a way to "dumb down" the randomization on the
> client and make it mostly a server side issue. I am
> interested in learning about the tradeoffs/risks in
> doing this.
>
That might cause problems, at least a naive implementation with some SSL
and TLS cipher suites. The reason being that the only part of an initial
SSL handshake with RSA cipher suites that is sent encrypted is the
pre-master secret which is generated on the client.
An attacker who can predict the pre-master secret can decrypt the whole
session.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
