Re: SSL / zlib compression
Adayadil Thomas wrote: Greetings. I have an SSL session in which the client and server has negotiated for cipherSuite SSL_RSA_WITH_RC4_128_MD5 compressionMethodzlib-compression Now, is the zlib-compression applied before encryption or after ? data - zlib-compression - encryption == decrypt - zlib-inflate- data or data - encryption - zlib-compression == zlib-inflate- decrypt - data Thanks Ashley Thomas __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED] Ashly look at RFC 2246 , The TLS Record Protocol part certainly u see this : optionally compresses the data, applies a MAC, encrypts, and transmits the result compression is an optional layer (i think no compression used in well-known ssl implementation) and ur question answer : zlib-compression - encryption regards __ Shahin Khorasani PKI Dept. Sharif SecureWare Co. www.parssign.com __ __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
SSL / zlib compression
Greetings. I have an SSL session in which the client and server has negotiated for cipherSuite SSL_RSA_WITH_RC4_128_MD5 compressionMethodzlib-compression Now, is the zlib-compression applied before encryption or after ? data - zlib-compression - encryption == decrypt - zlib-inflate- data or data - encryption - zlib-compression == zlib-inflate- decrypt - data Thanks Ashley Thomas __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
RE: SSL / zlib compression
I am almost sure its after... First you encrypt and then compress. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Adayadil Thomas Sent: Tuesday, September 26, 2006 7:46 PM To: openssl-dev@openssl.org Subject: SSL / zlib compression Greetings. I have an SSL session in which the client and server has negotiated for cipherSuite SSL_RSA_WITH_RC4_128_MD5 compressionMethodzlib-compression Now, is the zlib-compression applied before encryption or after ? data - zlib-compression - encryption == decrypt - zlib-inflate- data or data - encryption - zlib-compression == zlib-inflate- decrypt - data Thanks Ashley Thomas __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
Re: SSL / zlib compression
I have an SSL session in which the client and server has negotiated for cipherSuite SSL_RSA_WITH_RC4_128_MD5 compressionMethodzlib-compression Now, is the zlib-compression applied before encryption or after ? data - zlib-compression - encryption == decrypt - zlib-inflate- data or data - encryption - zlib-compression == zlib-inflate- decrypt - data Considering encrypted data, by nature, should not be predictable, and therefore not compressible, your second listing would not be logical. -Brad __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
Re: SSL / zlib compression
Vinu Thomas wrote: I am almost sure its after... First you encrypt and then compress. No way. First compression, then encryption, like Brad already said. Encrypted data is (almost) incompressible, regardless of cleartext. Hope it helps. Ted ;) -- PGP Public Key Information Download complete Key from http://www.convey.de/ted/tedkey_convey.asc Key fingerprint = 31B0 E029 BCF9 6605 DAC1 B2E1 0CC8 70F4 7AFB 8D26 smime.p7s Description: S/MIME Cryptographic Signature