at page 72 in rfc2246 :The following cipher specifications are carryovers from SSL Version
2.0. These are assumed to use RSA for key exchange and
authentication.
2.0. These are assumed to use RSA for key exchange and
authentication.
my question was about this note.
Mr Tveit, pleas explain more for me about "signature be omitted entirely" in anonymous key exchange, or give me its reference. thank you for your attention.
Jostein Tveit <[EMAIL PROTECTED]> wrote:
Mr Tveit, pleas explain more for me about "signature be omitted entirely" in anonymous key exchange, or give me its reference. thank you for your attention.
Jostein Tveit <[EMAIL PROTECTED]> wrote:
amineh salehi <[EMAIL PROTECTED]>writes:
> in the ciphersuites defined for it in "rfc2246"( TLS1.0), there isn't
> diffi-helman key exchange, why?
RFC 2246 specifies many DH key exchange cipher suites. Have a
look at page 61.
> What is the soulotion for vulnerability in anonymous key exchange pointed
> by Bruce Schneier (analysis of ssl,1996) ?
Do you mean "Analysis of the SSL 3.0 protocol" by Wagner and
Schneier?
If this is the paper you are talking about, you may have an old
version. The version revised April 15, 1997, states that this was
a typo in the standard, and that the designers intended that the
signature be omitted entirely.
--
Jostein Tveit <[EMAIL PROTECTED]>
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Use r Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
Sell on Yahoo! Auctions - No fees. Bid on great items.
