On Tue, 1 Mar 2016 18:23:25 +0000 Alyssa Rowan <[email protected]> wrote: > And so (maybe not entirely coincidentally!): another attack, dubbed > DROWN, just emerged¹, using SSLv2 as - you guessed it - a > Bleichenbacher padding oracle against RSA PKCS#1 v1.5!
To be fair, the issues surrounding RSA encryption are different ones than the ones about RSA signatures. We already agreed to deprecate RSA encryption entirely. Therefore DROWN is irrelevant for the discussion here. (What causes often confusion is that Daniel Bleichenbacher is responsible for *two* major and completely unrelated attacks against RSA PKCS #1 1.5, one against encryption and one against - badly implemented - signatures) -- Hanno Böck https://hboeck.de/ mail/jabber: [email protected] GPG: BBB51E42
pgpOvHDhmYRgZ.pgp
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
