Udhay Shankar N wrote, On 9/7/08 5:52 PM:
I think Dan Kaminsky is on this list. Any other tidbits you can add
prior to Black Hat?
He's posted a quite long article on his blog
http://www.doxpara.com/?p=1162
that looks like all the details he is likely to provide for the next 30
days. It does
I was asked off-list for a pointer to an explanation of DNSSEC. I guess
there may be other readers who'd like that, so here's a pointer to
Matasano Chargen's rather beautiful exposition:
http://www.matasano.com/log/case-against-dnssec/
Unfinished, but good enough. In particular, part 2 explain
At 06:58 PM 7/9/2008 -0400, Leichter, Jerry wrote:
Ah, where the web is going. 8e6 Technologies sells a hardware box
that it claims does signature analysis to detect HTTP proxies and
blocks them. It can also block HTTPS proxies "that do not have a
valid certificate" (whatever that means), as we
Dutch chipmaker NXP Semiconductors has sued a university in The
Netherlands to block publication of research that details security
flaws in NXP's Mifare Classic wireless smart cards, which are used in
transit and building entry systems around the world.
More at:
http://news.cnet.com/8301-10784_3-9
* Paul Hoffman:
> The take-away here is not that "Dan didn't discover the problem", but
> "Dan got it fixed".
I haven't seen credible claims that the underlying issue can actually be
fixed in the classic DNS protocol. There are workarounds on top of
workarounds. A real fix requires more or less
On Wed, Jul 09, 2008 at 02:39:42PM -0500, Harald Hanche-Olsen wrote:
> + John Kemp <[EMAIL PROTECTED]>:
>
> > It does seem he would like an air of some mystery to exist though
> > until he makes his presentation about the issue at Defcon - did he,
> > himself, discover something new? We'll just hav
In case somebody missed it,
http://www.tfr.org/wiki/index.php?title=Technical_Proposal_(IPETEE)
I'm not sure what the status of http://postel.org/anonsec/
is, the mailing list traffic dried up a while back.
--
Eugen* Leitl http://leitl.org";>leitl http://leitl.org
Eugen Leitl wrote:
In case somebody missed it,
http://www.tfr.org/wiki/index.php?title=Technical_Proposal_(IPETEE)
If this is a joke, I'm not getting it.
/ji
-
The Cryptography Mailing List
Unsubscribe by sending "unsubscr
At Thu, 10 Jul 2008 18:10:27 +0200,
Eugen Leitl wrote:
>
>
> In case somebody missed it,
>
> http://www.tfr.org/wiki/index.php?title=Technical_Proposal_(IPETEE)
>
> I'm not sure what the status of http://postel.org/anonsec/
> is, the mailing list traffic dried up a while back.
This is the firs
Ali, Saqib wrote:
Dutch chipmaker NXP Semiconductors has sued a university in The
Netherlands to block publication of research that details security
flaws in NXP's Mifare Classic wireless smart cards, which are used in
transit and building entry systems around the world.
Ah, more 3 monkeys sy
On Thu, Jul 10, 2008 at 06:10:27PM +0200, Eugen Leitl wrote:
> In case somebody missed it,
>
> http://www.tfr.org/wiki/index.php?title=Technical_Proposal_(IPETEE)
I did miss it. Thanks for the link. I don't think in-band key exchange
is desirable here, but, you never know what will triumph in
> "Eugen" == Eugen Leitl <[EMAIL PROTECTED]> writes:
Eugen> I'm not sure what the status of http://postel.org/anonsec/
The IETF just created a new list and subscribed all anonsec subscribers:
https://www.ietf.org/mailman/listinfo/btns
-JimC
--
James Cloos <[EMAIL PROTECTED]> OpenPG
On Wed, 2008-07-09 at 13:02 +1200, David G. Koontz wrote:
>
> I did a quick check to look for patent applications or patents by them and
> didn't find any. This isn't definitive if a patent application isn't
> published. The newest published patent application I found on encryption
> had an appl
On Thu, Jul 10, 2008 at 02:31:12PM -0400, James Cloos wrote:
> > "Eugen" == Eugen Leitl <[EMAIL PROTECTED]> writes:
>
> Eugen> I'm not sure what the status of http://postel.org/anonsec/
>
> The IETF just created a new list and subscribed all anonsec subscribers:
>
> https://www.ietf.org/mail
14 matches
Mail list logo