Re: [TLS] DTLS implementation attack?
Nikos Mavrogiannopoulos <nmav@gnutls.org> Tue, 06 December 2011 17:19 UTC
Return-Path: <n.mavrogiannopoulos@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6C42F21F8BBF for <tls@ietfa.amsl.com>; Tue, 6 Dec 2011 09:19:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.977
X-Spam-Level:
X-Spam-Status: No, score=-2.977 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3u1t8iOJj-Us for <tls@ietfa.amsl.com>; Tue, 6 Dec 2011 09:19:42 -0800 (PST)
Received: from mail-bw0-f44.google.com (mail-bw0-f44.google.com [209.85.214.44]) by ietfa.amsl.com (Postfix) with ESMTP id D7CF721F8BBA for <tls@ietf.org>; Tue, 6 Dec 2011 09:19:41 -0800 (PST)
Received: by bkbzs8 with SMTP id zs8so5177bkb.31 for <tls@ietf.org>; Tue, 06 Dec 2011 09:19:39 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; bh=A20Byh/Or9VXBUtu4DuJRiv2fZPAf5kOqI/qBAFxW8I=; b=C415j9YUjKX8Wx6qBxjdh+f0yyKHygdaaQbV/pFrykzoQNeQvjk/S5ygd3hh2t0O5x rdZEP5kbqfc2hXuCkxYF0TvzSI/2rqnG+oiOLCyw/wkCsaVoZL83rKJ4LTqjuXOCXCba +nXqg5jmJQhJ/laaUEeCGKIKC0zoZAr25TWxE=
MIME-Version: 1.0
Received: by 10.180.74.211 with SMTP id w19mr8249141wiv.7.1323191979741; Tue, 06 Dec 2011 09:19:39 -0800 (PST)
Sender: n.mavrogiannopoulos@gmail.com
Received: by 10.180.4.72 with HTTP; Tue, 6 Dec 2011 09:19:39 -0800 (PST)
In-Reply-To: <4EDE4953.6040709@extendedsubset.com>
References: <4EDE4953.6040709@extendedsubset.com>
Date: Tue, 06 Dec 2011 18:19:39 +0100
X-Google-Sender-Auth: Xedo3L8-xU4bzcrtbENHNp2B-8w
Message-ID: <CAJU7za+V9XtMvONo6BOWdR8JYjtLi7nuZNfO3mnd6SwQ4277kQ@mail.gmail.com>
From: Nikos Mavrogiannopoulos <nmav@gnutls.org>
To: Marsh Ray <marsh@extendedsubset.com>
Content-Type: text/plain; charset="UTF-8"
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] DTLS implementation attack?
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Dec 2011 17:19:43 -0000
On Tue, Dec 6, 2011 at 5:56 PM, Marsh Ray <marsh@extendedsubset.com> wrote: > Anyone have more info on this? > Even just a CVE or 'fixed in' version would be helpful. > http://www.isoc.org/isoc/conferences/ndss/12/program.shtml#1a >> Plaintext-Recovery Attacks Against Datagram TLS Concerning gnutls the 3.0.8 release reduces the timing information revealed to an adversary to counter this attack. However, I'm still in contact with the authors for more information on the issue. regards, Nikos
- [TLS] DTLS implementation attack? Marsh Ray
- Re: [TLS] DTLS implementation attack? Nikos Mavrogiannopoulos
- Re: [TLS] DTLS implementation attack? Martin Rex
- Re: [TLS] DTLS implementation attack? Eric Rescorla
- Re: [TLS] DTLS implementation attack? Martin Rex
- Re: [TLS] DTLS implementation attack? Eric Rescorla
- Re: [TLS] DTLS implementation attack? Nikos Mavrogiannopoulos
- Re: [TLS] DTLS implementation attack? Paterson, Kenny